On Saturday 05 Jan 2013 16:24:40 Tom Eastep wrote: > On 01/05/2013 07:48 AM, Steven Jan Springl wrote: > > Arprules entry: > > > > DROP eth0:!1.1.1.1 - 1 > > > > Produces the following error: > > > > ERROR: Invalid IP Address (!1.1.1.1) /etc/shorewall2A11/arprules (line > > 10) > > Attached ARP3.patch corrects this problem. > > > ------------------------------------------------------------------------- > > ----------------------- > > > > Arprules entry: > > > > DROP eth0 - !1 > > > > Generates the following arptables rule: > > > > -A INPUT -i eth0 --opcode 1 -j DROP > > > > Which seems to ignore the '!' in the ARP OPCODE column. > > This problem was unique to 'arptables' it worked correctly with > 'arptables_jf'. > > ARP4.patch attached > > Thanks, Steven > > -Tom
Tom Confirmed, the patches have fixed both issues. Note, there seems to be a bug in arptables. Arprules entry: DROP eth0 - !1 Generates arptables rule: -A INPUT -i eth0 --opcode ! 1 -j DROP Issuing arptables-save produces: -A INPUT -j DROP -i eth0 --opcode 1 The "!" is missing. I am using arptables v0.0.3.4 supplied with Debian Squeeze. Steven. ------------------------------------------------------------------------------ Master Visual Studio, SharePoint, SQL, ASP.NET, C# 2012, HTML5, CSS, MVC, Windows 8 Apps, JavaScript and much more. Keep your skills current with LearnDevNow - 3,200 step-by-step video tutorials by Microsoft MVPs and experts. SALE $99.99 this month only -- learn more at: http://p.sf.net/sfu/learnmore_122912 _______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
