Re: [Shorewall-users] iptables-restore Not Found

Sat, 08 Sep 2007 08:32:50 -0700 

On Sat, 2007-09-08 at 12:08 +0300, Andrei Verovski (aka MacGuru) wrote:
> Hi !
> 
> This was my first idea, too. However:
> 
> 11:55 linux-srv:~ > locate iptables-restore
> /usr/sbin/iptables-restore
> 
> 
> 11:55 linux-srv:/usr/sbin # ls -la | grep iptables
> -rwxr-xr-x  1 root root       47920 2007-08-21 20:06 iptables
> -rwxr-xr-x  1 root root       52184 2007-08-21 20:06 iptables-restore
> -rwxr-xr-x  1 root root       52148 2007-08-21 20:06 iptables-save
> -rwxr-xr-x  1 root root       14272 2007-08-21 20:06 iptables-xml
> 
> In Shorewall.conf - 
> PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
> 
> After I set
> IPTABLES=/usr/sbin/iptables
> 
> Everything worked fine.
> 
> Anyway, I suppose there is some glitch because other iptables executables are 
> found without any problem.

The lines of shell code leading up to the error should have been the
following:

    IPTABLES="/sbin/iptables"

    [ -x "$IPTABLES" ] || startup_error "IPTABLES=$IPTABLES does not exist or 
is not executable"
    IPTABLES_RESTORE=${IPTABLES}-restore
    [ -x "$IPTABLES_RESTORE" ] || startup_error "$IPTABLES_RESTORE does not 
exist or is not executable"


Pretty hard to understand how that could go wrong unless the final '-x'
test was returning a false value.

FWIW, your current /var/lib/shorewall/.restart file should have this
very similar code:

    IPTABLES="/usr/sbin/iptables"

    [ -x "$IPTABLES" ] || startup_error "IPTABLES=$IPTABLES does not exist or 
is not executable"
    IPTABLES_RESTORE=${IPTABLES}-restore
    [ -x "$IPTABLES_RESTORE" ] || startup_error "$IPTABLES_RESTORE does not 
exist or is not executable"


-Tom
-- 
Tom Eastep    \ Nothing is foolproof to a sufficiently talented fool
Shoreline,     \ http://shorewall.net
Washington USA  \ [EMAIL PROTECTED]
PGP Public Key   \ https://lists.shorewall.net/teastep.pgp.key

Attachment: signature.asc
Description: This is a digitally signed message part

-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2005.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to