http://qa.mandrakesoft.com/show_bug.cgi?id=1952
------- Additional Comments From [EMAIL PROTECTED] 2003-03-06 22:20 ------- This bug is still valid. I use mdk9.1 rc2 (installed with ios1 on hd and hd.iso on floppy) and downloaded shorewall and etc today (6 march) from cooker. Shorewall wouldn't start beacause puplicate enteries in /etc/shorewall/interfaces I removed one line (loc eth1 detect) and everything worked just fine. drakxtools-9.1-11mdk shorewall-1.3.14-3mdk Regards, Ola A ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is. ------- Reminder: ------- assigned_to: [EMAIL PROTECTED] status: UNCONFIRMED creation_date: description: I hope this isn't due to a stale config anywhere (I've been running Cooker since before 9.0). On my system, drakgw currently doesn't work. It runs fine and reports success, but the shorewall settings it creates are wrong and break shorewall. It creates a /etc/shorewall/interfaces file with this lines (among all the comments): net eth0 detect masq eth1 detect loc eth1 detect This is invalid according to the comments in the same file, which state that you can only specify each interface *once* in the interfaces file. If a single interface needs to use multiple zones, as seems to be the case, it says these need to be defined in /etc/shorewall/hosts and the zone for the interface should be set to "-". The upshot of all this is that the shorewall service does not start, complaining about the multiple instances of eth1 in the /etc/shorewall/interfaces file. This makes internet connection sharing configuration impossible and may break existing setups, which is a severe problem, IMO. I have confirmed this with several ways of setting up internet connection sharing. At first I set up the firewall first then configured ICS, then I removed shorewall entirely and attempted to set up ICS without configuring the firewall. The resulting /etc/interfaces files was the same in both cases, and did not work.