>> 2. During compile I am getting this warning: >> >> Use of uninitialized value in addition (+) at >> /usr/share/shorewall/Shorewall/Chains.pm line 712. >> Use of uninitialized value in addition (+) at >> /usr/share/shorewall/Shorewall/Chains.pm line 712. >> > > The attached FROZEN.patch is a big hammer fix: > > patch /usr/share/shorewall/Shorewall/Chains.pm < FROZEN.patch > I see there are few other patches posted later - should I apply them all (including this one) or is there a ready-made rpm with all the patches (will save me the time)?
> My description of what I intended to do specifically mentioned that no > warning would be issued in that case. > Read your post which just arrived - placing warning is better. > >> 5. I have both src,dst specified in the blacklist file, but when I >> specify 'net - - blacklist' (i.e. OUT only) I am getting both blacklst >> and blackout chains with matching ipsets (it should be only the OUT >> part) and do not have a warning. >> > > Hmmm -- there is code to issue a warning; I'll investigate further. > Apologies, I tried to reproduce this again, but I must have had a 'blacklist' left on one of my interfaces when I tested this. Tried it again this morning and I do get the warnings and all chains are in perfect order. > >> 6. When I specify 'net - blacklist' (i.e. IN only) I am getting the >> right result - blacklist chain with 2 references (net2fw and ethx_frwd), >> blacklist is missing and I get a warning as well, however if I have put >> the 'blacklist' option in the fw zone (in the OPTIONS column) I get a >> 'blank' blackout and NO warnings. I suspect I would get similar results >> when I am using other similar permutations on fw and the net zones. >> > > Again -- neither firewall nor vserver zones should be allowed the > blacklist option. > Has this been addressed? ------------------------------------------------------------------------------ Start uncovering the many advantages of virtual appliances and start using them to simplify application deployment and accelerate your shift to cloud computing. http://p.sf.net/sfu/novell-sfdev2dev _______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
