Seem to be getting this message on the firewall status screen on LuCI. Currently on latest TOS (I believe 7.1.2 now).
The legacy rules appear to be created by SQM for “marking” of certain things on the guest network. I do have QOS enabled in Reforis for the guest network.
Is this a known issue, a bug, or a cleanup problem?
Lots of useful information in there. Can’t quite understand if this is “expected behavour” in Turris though.
One comment says “With cake you won’t get nft warnings at the luci firewall page.”
I assume Turris isn’t using “cake” whatever that is? Since I’ve not manually messed with sqm packages at all.
Cake and fq_codel are traffic shaping algorithms. I believe if you set up SQM to fight bufferbloat yourself then most likely you used cake/layer_of_cake.
If you didnt set it up yourself then I guess guest wifi is using fq_codel. You may check it out using
tc -d qdisc
Ah fair, all I did was enable guest network in Reforis and enabled a bandwidth limit for it.
config queue ‘guest_limit_turris’
option enabled ‘1’
option interface ‘br-guest-turris’
option qdisc ‘fq_codel’
(etc)
So yes, it is using fq_codel. I have no idea if it should be or not, since that is configuration and may have been left over from migration to 7.1.2
assuming that is actually the source, looks like they are using fq_codel, as of master.