LuCI : firewall rewrites protocol 112 to vrrp, but fw4/nftables cannot render the generated rule and firewall restart fails.

### Is there an existing issue for this?

- [x] I have searched among all existing issues (including closed issues)

### screenshots or captures

_No response_

### Actual behaviour

When creating a firewall rule through LuCI → Network → Firewall → Traffic Rules and adding a custom protocol value 112, LuCI rewrites the protocol in /etc/config/firewall from 112 to vrrp. On OpenWrt, firewall rules are rendered by fw4 into nftables rules, so if the generated rule cannot be rendered, the firewall fails to load.

In my case, after saving the rule in LuCI, the firewall configuration contains:

`list proto 'vrrp'`

Then service firewall restart fails, and the firewall is not loaded. The error is:

```
/dev/stdin:192:16-19: Error: Could not resolve protocol name
                meta l4proto vrrp counter accept comment "!fw4: VRRP"
                             ^^^^
```
The rendered ruleset contains errors, not doing firewall restart.

As a result, the inet fw4 table is not present, NAT/masquerading is missing, and LAN clients lose internet connectivity.

If I manually edit /etc/config/firewall and replace:

`list proto 'vrrp'`

with:

`list proto '112'`

then everything works correctly again and the firewall starts normally.

### Expected behaviour

LuCI should preserve the numeric custom protocol value 112, or otherwise write it in a form that fw4 can render successfully.

### Steps to reproduce

Steps to reproduce

- Open LuCI → Network → Firewall → Traffic Rules

- Create a new traffic rule

- Add a custom protocol value 112/Press enter

- Save and apply changes

- Check /etc/config/firewall

- Observe that LuCI rewrites protocol 112 to vrrp

- Run:   `service firewall restart`

### Additional Information

```shell
{
        "kernel": "6.12.74",
        "hostname": "w0wkinXXXNETXXsecondary",
        "system": "Intel(R) Core(TM) i3-N305",
        "model": "QEMU Standard PC (Q35 + ICH9, 2009)",
        "board_name": "qemu-standard-pc-q35-ich9-2009",
        "rootfs_type": "ext4",
        "release": {
                "distribution": "OpenWrt",
                "version": "25.12.1",
                "firmware_url": "https://downloads.openwrt.org/",
                "revision": "r32768-b21cfa8f8c",
                "target": "x86/64",
                "description": "OpenWrt 25.12.1 r32768-b21cfa8f8c",
                "builddate": "1773711117"
        }
}
```

### What browsers do you see the problem on?

Firefox

### Relevant log output

```shell

```

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

LuCI : firewall rewrites protocol 112 to vrrp, but fw4/nftables cannot render the generated rule and firewall restart fails. #8449

Is there an existing issue for this?

screenshots or captures

Actual behaviour

Expected behaviour

Steps to reproduce

Additional Information

What browsers do you see the problem on?

Relevant log output

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

LuCI : firewall rewrites protocol 112 to vrrp, but fw4/nftables cannot render the generated rule and firewall restart fails. #8449

Description

Is there an existing issue for this?

screenshots or captures

Actual behaviour

Expected behaviour

Steps to reproduce

Additional Information

What browsers do you see the problem on?

Relevant log output

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions