I managed to get the 'IP filters: /etc/init.d/network: [B/sbin/ipchains: not found' error gone by replacing the ipfilter.conf and networks file with new ones.
but am still have the invalid port service error.....before I redo a new network.conf does this bug still exist?? Re: [Leaf-user] 4 NIC LRP -Dachstein CD- only one internal IP forwards to internet http://www.mail-archive.com/leaf-user@lists.sourceforge.net/msg05123.html Thanks -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Charles Steinkuehler Sent: Friday, August 09, 2002 1:19 PM To: Alec Miller; [EMAIL PROTECTED] Subject: Re: [leaf-user] Dachstein-CD eth3 / DMZ error > Now here is the error I get when i run 'svi network reload'. I have > tracked it down to the DMZ_SERVERx list. When I comment them out the error > list shrinks. > > IP filters: /sbin/ipchains: can only specify ports for icmp, tcp or udp > Try `/sbin/ipchains -h' or '/sbin/ipchains --help' for more information. > /sbin/ipchains: invalid port/service `10.72.104.96/28' specified > Try `/sbin/ipchains -h' or '/sbin/ipchains --help' for more information. > /sbin/ipchains: invalid port/service `10.72.104.96/28' specified > Try `/sbin/ipchains -h' or '/sbin/ipchains --help' for more information. > /etc/init.d/network: [B/sbin/ipchains: not found > firewall [IP Forwarding: ENABLED] > > And When I turn the DMZ=NO I have this error: > > Starting Network: [IP Always Defrag: ENABLED] > IP filters: /etc/init.d/network: [B/sbin/ipchains: not found > > I've been staring at this for hours and can't figure out what is causing it. > > Thanks In advance It's hard to say exactly what's wrong, but I think one (or more) of the files used to configure networking & firewall rules has gotten corrupted...possibly a dos/unix EOL mis-match, or perhaps an incorrect/unrecognized eschape character sequence in a remote editor window (it sure looks like the [B got accidentally added before /sbin/ipchains, to create the last error above, and there could be other hidden problems). It looks like you've got the DMZ configuration variables set correctly, so I'd try running a DOS->unix EOL converter, looking through the configuration files manually, and/or possibly copying them from a fresh Dachstein image and re-configuring network.conf. FYI, files involved in setting up networking/firewalls, and hence possibly causing errors if corrupted include: /etc/init.d/network /etc/network.conf /etc/ipfilter.conf /etc/ipchains.* You can do the dos2unix conversion with your favorite tool/editor on a remote system (move files via ssh/scp/floppy/whatever), or directly on the firewall with sed (requires crafty shell quoting) or something like charconv (available from my site: http://lrp.steinkuehler.net/files/packages/Utilities/charconv ). Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
