SYSTEM WARNING: 'date_default_timezone_get(): It is not safe to rely on the system's timezone settings. You are *required* to use the date.timezone setting or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected the timezone 'UTC' for now, but please set date.timezone to select your timezone.' in '/usr/share/mantis/www/core.php' line 264

0001504: Too many rules in interzone makes the ZONEFW chain empty - MantisBT
MantisBT - Endian Firewall
View Issue Details
0001504Endian FirewallFirewall (iptables)public2008-12-09 16:282010-03-04 15:48
ekaftan 
peter-endian 
normalmajoralways
closedfixed 
2.2-rc1 
2.32.3 
0001504: Too many rules in interzone makes the ZONEFW chain empty
I have a very large interzone configuration. Everytime the config file gets much over 3k or 30 lines, rc.firewall fails to build a ZONEFW chain and firewall misbehaves.

I am using 2.2.1 release licensed.

I can reproduce at will with a lot of rules.
No tags attached.
related to 0002751closed peter-endian Too many rules in dnat/snat makes the chain empty 
Issue History
2008-12-09 16:28ekaftanNew Issue
2008-12-09 16:28ekaftanAssigned To => peter-endian
2008-12-09 20:10peter-endianNote Added: 0001846
2008-12-09 20:11peter-endianStatusnew => feedback
2009-06-10 12:58peter-endianTarget Version => future
2009-06-10 12:58peter-endianDescription Updated
2009-06-10 13:04peter-endianTarget Versionfuture => 2.3
2009-07-10 19:24peter-endianStatusfeedback => confirmed
2009-07-10 19:25peter-endianNote Added: 0002749
2009-07-10 22:11peter-endianStatusconfirmed => resolved
2009-07-10 22:11peter-endianFixed in Version => 2.3
2009-07-10 22:11peter-endianResolutionopen => fixed
2009-10-27 11:59peter-endianStatusresolved => closed
2010-03-04 15:48peter-endianIssue cloned: 0002751
2010-03-04 15:48peter-endianRelationship addedrelated to 0002751

Notes
(0001846)
peter-endian   
2008-12-09 20:10   
very interesting

could you please start with
restartzonefw.py --debug
and post the output?

and then please the output of:
wc -l /etc/firewall/zonefw/iptableszonefw
(0002749)
peter-endian   
2009-07-10 19:25   
tried with 5424 rules. script will be created, but not installed.
We should not pipe the resulting rules, but write it down to a temporary file and execute that.