Re: [Shorewall-users] Shorewall 3.2.4 tcrules: SCP/SSH distinction stopped working

> With patch this time... > > Zachary Palmer wrote: > > >> Once again, that was working dandy right up until sometime recently, >> when I presumably did something stupid and broke it. However, I have >> not touched my firewall configuration since I added those lines and >> verified that they w

Re: [Shorewall-users] Problem configuring shorewall

Peter Haijen wrote: > > Very puzzled as to what is wrong here thx for any help you may offer! Check the Shorewall Xen documentation and look for "ethtool". Sounds like you have the common checksum problem. -Tom -- Tom Eastep\ Nothing is foolproof to a sufficiently talented fool Shoreli

[Shorewall-users] Problem configuring shorewall

Hi there,I've been having some problems with - what else - shorewall. Running debian sarge, with shorewall 3.2.4 from testing.My setup is 1 machine running Xen, firewall configured in virtual machine, with virtual eth0 connected to virtual local network using 10.0.0.1, and 1 real eth1 hidden from

Re: [Shorewall-users] Please help me.

Tom Eastep wrote: > sada wrote: >> 1) I can not log-in "shorewall router" from eth0 (I can log in from node 1 >> or 2 ) > > Since you did not include your rules, we can't comment on that. How are you > trying to "log in"? SSH? > Sorry -- I meant to delete that. I assume that you are trying to

Re: [Shorewall-users] Please help me.

sada wrote: > I could start shorewall daemon. Please note that Shorewall is not a daemon. From the Shorewall home page: "Shorewall is not a daemon. Once Shorewall has configured Netfilter, it's job is complete and there is no Shorewall code left running in the system".

[Shorewall-users] Known Problems and Fixes for 3.2.5

I'm going to start announcing the availability of patches so that users are aware of known problems and solutions. The fixes are available at http://www1.shorewall.net/pub/shorewall/3.2/shorewall-3.2.5. 1) Corruption of the /etc/iproute2/rt_tables database is possible when multiple providers

Re: [Shorewall-users] Shorewall 3.2.4 tcrules: SCP/SSH distinction stopped working

With patch this time... Zachary Palmer wrote: > > Once again, that was working dandy right up until sometime recently, > when I presumably did something stupid and broke it. However, I have > not touched my firewall configuration since I added those lines and > verified that they worked (and qu

Re: [Shorewall-users] Shorewall 3.2.4 tcrules: SCP/SSH distinction stopped working

Zachary Palmer wrote: > > Once again, that was working dandy right up until sometime recently, > when I presumably did something stupid and broke it. However, I have > not touched my firewall configuration since I added those lines and > verified that they worked (and quite successfully, too).

Re: [Shorewall-users] Shorewall 3.2.4 tcrules: SCP/SSH distinction stopped working

Tom Eastep wrote: > Zachary Palmer wrote: > >> # SSH (with lower priority SCP) >> 3 0.0.0.0/0 0.0.0.0/0 tcp 22 >> 3 0.0.0.0/0 0.0.0.0/0 tcp - 22 >> 4 0.0.0.0/0 0.0.0.0/0 tcp 22 - - >> - - 8 >> 4

Re: [Shorewall-users] Shorewall 3.2.4 tcrules: SCP/SSH distinction stopped working

Zachary Palmer wrote: > > # SSH (with lower priority SCP) > 3 0.0.0.0/0 0.0.0.0/0 tcp 22 > 3 0.0.0.0/0 0.0.0.0/0 tcp - 22 > 4 0.0.0.0/0 0.0.0.0/0 tcp 22 - - > - - 8 > 4 0.0.0.0/0 0.0.0

[Shorewall-users] Please help me.

Hi I am beginner for Shorewall I would like to master this program. Please point out about my problems. I installed shorewall 3.2 with rpm package in FedoraCore5 I could start shorewall daemon. Basically, I would like to make my setting as all-free-pass then add-policy--bit-by-bit type of