Scorpy wrote: > I am using Shorewall version 4.0.0-1 on Suse 10.
Are you using shorewall-shell or shorewall-perl? Is this SEL 10.0? OpenSuSE 10.0, ??? > When I start/restart shorewall i get error: > FATAL: Error inserting nf_conntrack_ipv4 > (/lib/modules/2.6.13-15-default/kernel/net/ipv4/netfilter/nf_conntrack_ipv4.ko): > Device or resource busy I suggest that you copy /usr/share/shorewall/modules to /etc/shorewall/modules and modify the copy to the bare minimum (those modules from the 'helper' section that you actually use such as ip_conntrack_ftp, ip_nat_ftp, ...). > > Shorewall works I guess but I dont know which part of Shorewall isnt > working because of this error. If shorewall start/restart succeeds then Shorewall is working. > I also have question relating /var/log/messages file. In previous > versions Previous versions of what? Shorewall? SuSE? > this file contained all the date relavent to hack attemps. Now > it shows nothing. The reason that I've been asking about your SuSE version is that SuSE switched to using syslog_ng somewhere in the 10 series; with syslog_ng, all netfilter messages (including Shorewall's) are logged to /var/log/firewall rather than /var/log/messages. Remember -- Shorewall has no control over where messages are logged; the LOGFILE setting in shorewall.conf merely tells /sbin/shorewall where to look for the messages when processing the 'show log', 'logwatch' and 'dump' commands. See http://www.shorewall.net/shorewall_logging.html. Is this maybe related to the problem mentioned above? No. The module loading message has to do with different kernel versions having different valid combinations of loaded modules. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
