Tom Eastep wrote: > Tom Eastep wrote: >> Brian J. Murrell wrote: >> >>> But the problem is: >>> >>> ERROR: Can't determine the IP address of eth1 >>> >>> Of course eth1 lives on the firewall, not the admin box, yet the admin >>> box is trying to do: >>> >>> + find_first_interface_address eth1 >>> + ip -f inet addr show eth1 >>> ... >>> >>> That is something that is going to have to be remotely executed. >> Please send a trace. > > Or are you calling find_first_interface_address out of your > /etc/shorewall/params script? >
If you need to set an address in /etc/shorewall/params, here's a trick:
if [ $HOSTNAME = remote ]; then
ADDR=$(find_first_interface_address eth1)
else
ADDR=$(ssh [EMAIL PROTECTED] "shorewall-lite call
find_first_interface_address
eth1")
fi
-Tom
--
Tom Eastep \ Nothing is foolproof to a sufficiently talented fool
Shoreline, \ http://shorewall.net
Washington USA \ [EMAIL PROTECTED]
PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier. Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
