On Monday 13 September 2010 21:18:25 Tom Eastep wrote:
> On 9/13/10 12:29 PM, Steven Jan Springl wrote:
> > Tom
> >
> > Interface entry:
> >
> > rest xyz nets=dynamic,optional
> >
> > produces the following message:
> >
> > iptables-restore v1.4.9.1: Set rest_xyz doesn't exist.
> >
> > Note: Shorewall starts when a host entry such as the following is
> > defined, so I know that ipset is working:
> >
> > z1 eth1:dynamic tcpflags
>
> what does 'fgrep IPSET <compiled script>' produce, Steven?
>
> Thanks,
> -Tom
Tom
See attached file.
Steven.
IPSET=ipset
case $IPSET in
[ -x "$IPSET" ] || startup_error "IPSET=$IPSET does not exist or is
not executable"
IPSET="$(mywhich $IPSET)"
[ -n "$IPSET" ] || startup_error "The ipset utility cannot be
located"
$IPSET -F
$IPSET -X
$IPSET -R < ${VARDIR}/ipsets.save
$IPSET -F
$IPSET -X
$IPSET -R < $(my_pathname)-ipsets
qt $IPSET -L rest_xyz -n || $IPSET -N rest_xyz iphash
qt $IPSET -L z1_eth1 -n || $IPSET -N z1_eth1 iphash
qt $IPSET -L rest_xyz -n || $IPSET -N rest_xyz iphash
qt $IPSET -L z1_eth1 -n || $IPSET -N z1_eth1 iphash
if eval $IPSET -S $hack > ${VARDIR}/ipsets.tmp; then
qt $IPSET -L rest_xyz -n || $IPSET -N rest_xyz iphash
qt $IPSET -L z1_eth1 -n || $IPSET -N z1_eth1 iphash
case $IPSET in
if [ ! -x "$IPSET" ]; then
error_message "ERROR: IPSET=$IPSET does not exist or is not
executable - ipsets are not saved"
IPSET=
IPSET="$(mywhich $IPSET)"
[ -n "$IPSET" ] || error_message "ERROR: The ipset utility cannot
be located - ipsets are not saved"
if [ -n "$IPSET" ]; then
if eval $IPSET -S $hack > ${VARDIR}/ipsets.tmp; then
------------------------------------------------------------------------------
Start uncovering the many advantages of virtual appliances
and start using them to simplify application deployment and
accelerate your shift to cloud computing
http://p.sf.net/sfu/novell-sfdev2dev
_______________________________________________
Shorewall-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-devel
