To help with community awareness and to potentially save the folks at GL.iNet from receiving multiple additional messages about this, I said I was going to cross-post/cross-reference my post in Reddit about this issue.
You can find the Reddit thread here: https://www.reddit.com/r/GlInet/comments/1np8utp/luci_leftovers_with_flint_2glmt6000_firmware_482/.
Hello,
Thanks for your feedback.
I checked the screenshots you shared in reddit, which should be firewall rules that are generated/deleted when the GL GUI enables/disables VPN client.
These rules are intended to protect DNS from being leaked when VPN running.
Luci may have some incompatibility, but it does not cause VPN DNS leakage or other events.
All functions of GL GUI are safe and normal running.
If you have these prompts when login Luci, please ignore them, or need to modify some configuration in Luci, you can carry these uci commands (uci del firewall.*) to Save & Apply.
Please use them with confidence.
Hi @bruce ,
Yes, I knew what the firewall rules themselves are, but the fact LuCI was showing these as changes waiting to be applied was what prompted my post, because these changes had already been made by the GL.iNet UI previously, so it was initially odd and confusing to see these edits waiting for me to “Save & Apply” some time later when I was doing something else in LuCI that had nothing to do with these rules. And I had never run into this kind of thing (despite doing a fair bit of work in LuCI and also using the GL.iNet UI for VPN client management) prior to the 4.8.x firmware. Once I investigated, I convinced myself these were benign leftovers, so I planned on doing what I said in my Reddit post and what you’ve said here, too: ignore them.
On that note, I appreciate you confirming these are indeed just benign “leftovers”, and someone replied to my email saying the same. I’ll confirm that in the Reddit thread as well to close the loop for folks. Thanks for everything you and others at GL.iNet do.