#1842 mod_firewall: ORIGIN MARKED not triggering on local connections
Reporter
Ge0rG
Owner
Nobody
Created
Updated
Stars
★ (1)
Tags
Priority-Medium
Type-Defect
Status-New
Ge0rG
on
I'm using a rule of `ORIGIN MARKED: dnsbl_hit` in the `::preroute` chain for local users, and it is not triggered, despite the user having the respective firewall mark on their account and session set:
```
>bare_sessions["evildoer@yax.im"].firewall_marks
| Result: {
dnsbl_hit = 1699999794;
}
```
However, mod_firewall just lets the rule pass by.
Ge0rG
on
P.S: can we keep `MARK USER` as an alternative to `MARK ORIGIN` that will only apply the mark to the session if it is a c2s session?
I'm using a rule of `ORIGIN MARKED: dnsbl_hit` in the `::preroute` chain for local users, and it is not triggered, despite the user having the respective firewall mark on their account and session set: ``` >bare_sessions["evildoer@yax.im"].firewall_marks | Result: { dnsbl_hit = 1699999794; } ``` However, mod_firewall just lets the rule pass by.
P.S: can we keep `MARK USER` as an alternative to `MARK ORIGIN` that will only apply the mark to the session if it is a c2s session?