On Thu, 2008-12-04 at 12:33 -0800, Shorewall Geek wrote: > Shorewall Geek wrote:
> FWIW, I'm not able to reproduce EITHER problem here on an Etch system > with Shorewall 4.0.14. And I presume your are Etch-based since your > iptables is version 1.3.6 which shipped with Etch. > While this system's name is 'Lenny' it is an Etch system running the Testing (Lenny) version of Shorewall. Lenny:/etc/shorewall# shorewall version -a 4.0.14.2 Shorewall-shell 4.0.14.1 Shorewall-perl 4.0.14.2 Lenny:/etc/shorewall# cat /etc/debian_version 4.0 Lenny:/etc/shorewall# shorewall restart Compiling... Initializing... Determining Zones... IPv4 Zones: net Firewall Zone: fw Validating interfaces file... Validating hosts file... Pre-processing Actions... Pre-processing /usr/share/shorewall/action.Drop... Pre-processing /usr/share/shorewall/action.Reject... Validating Policy file... Determining Hosts in Zones... net Zone: eth0:0.0.0.0/0 Deleting user chains... Compiling /etc/shorewall/routestopped ... Compiling Accounting... Creating Interface Chains... Compiling Common Rules Adding Anti-smurf Rules Adding rules for DHCP Compiling TCP Flags checking... Compiling Kernel Route Filtering... Compiling Martian Logging... Compiling /etc/shorewall/rules... Compiling Actions... Compiling /usr/share/shorewall/action.Drop for Chain Drop... Compiling /usr/share/shorewall/action.Reject for Chain Reject... Compiling /etc/shorewall/policy... Compiling Traffic Control Rules... Compiling Rule Activation... Compiling IP Forwarding... Shorewall configuration compiled to /var/lib/shorewall/.restart Restarting Shorewall.... Initializing... Clearing Traffic Control/QOS Deleting user chains... Enabling Loopback and DNS Lookups Setting up Accounting... Creating Interface Chains... Setting up SMURF control... Setting up Black List... Adding Anti-smurf Jumps... Setting up rules for DHCP... Setting up TCP Flags checking... Setting up ARP filtering... Setting up Route Filtering... Setting up Martian Logging... Setting up Accept Source Routing... Setting up SYN Flood Protection... Setting up Rules... Setting up Actions... Creating action chain Drop Creating action chain Reject Creating action chain dropBcast Creating action chain dropInvalid Creating action chain dropNotSyn Applying Policies... Activating Rules... IP Forwarding Enabled done. Lenny:/etc/shorewall# cat accounting hedges:COUNT - eth0 10.1.1.5 - - - hedges:COUNT - 10.1.1.5 eth0 - - - DONE hedges desi:COUNT - eth0 10.1.1.12 - - - desi:COUNT - 10.1.1.12 eth0 - - - DONE desi inneke:COUNT - eth0 10.1.1.11 - - - inneke:COUNT - 10.1.1.11 eth0 - - - DONE inneke peter:COUNT - eth0 10.1.1.10 - - - peter:COUNT - 10.1.1.10 eth0 - - - DONE peter Lenny:/etc/shorewall# dpkg -l dash Desired=Unknown/Install/Remove/Purge/Hold | Status=Not/Installed/Config-files/Unpacked/Failed-config/Half-installed |/ Err?=(none)/Hold/Reinst-required/X=both-problems (Status,Err: uppercase=bad) ||/ Name Version Description +++-=================================-=================================-================================================================================== ii dash 0.5.3-7 The Debian Almquist Shell Lenny:/etc/shorewall# ------------------------------------------------------------------------------ SF.Net email is Sponsored by MIX09, March 18-20, 2009 in Las Vegas, Nevada. The future of the web can't happen without you. Join us at MIX09 to help pave the way to the Next Web now. Learn more and register at http://ad.doubleclick.net/clk;208669438;13503038;i?http://2009.visitmix.com/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
