Package: ferm
Version: 2.0.3-1
Severity: important
Hi,
I have
hook pre "echo 0 >/proc/sys/net/ipv4/ip_forward";
hook post "echo 1 >/proc/sys/net/ipv4/ip_forward";
in my /e/f/ferm.conf, however ip forwarding is only enabled if I touch the
config file prior to execution of /e/i/ferm start:
$ sudo /etc/init.d/ferm reload
Reloading Firewall configuration......done.
$ cat /proc/sys/net/ipv4/ip_forward
0
$ sudo touch /etc/ferm/ferm.conf
$ sudo /etc/init.d/ferm reload
Reloading Firewall configuration......echo 1 >/proc/sys/net/ipv4/ip_forward
done.
$ cat /proc/sys/net/ipv4/ip_forward
1
This problem could be related to #548579, this is my /etc/default/ferm
FAST=yes
CACHE=yes
OPTIONS=
ENABLED=yes
and the cached script lacks an echo 1 > ...
/var/cache/ferm/start.sh:
echo 0 >/proc/sys/net/ipv4/ip_forward
/sbin/iptables-restore <<EOT
...
COMMIT
EOT
Setting
FAST=no
CACHE=no
solves this problem.
regards
Stefan
-- System Information:
Debian Release: 5.0.3
APT prefers stable
APT policy: (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 2.6.30-bpo.1-686 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/bash
Versions of packages ferm depends on:
ii debconf 1.5.24 Debian configuration management sy
ii iptables 1.4.2-6 administration tools for packet fi
ii lsb-base 3.2-20 Linux Standard Base 3.2 init scrip
ii perl 5.10.0-19lenny2 Larry Wall's Practical Extraction
ferm recommends no packages.
ferm suggests no packages.
-- debconf information:
* ferm/enable: false
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
