Thank you Tom, I edited manually Config.pm, it works now.
By the way, I'm not using vanilla iptables 1.4.2 but the patched version
provided from the Gentoo Linux devs. Most patches are taken from
upstream anyway though.
The command:
iptables -t mangle -L -n > /dev/null
Works fine here, but in a x86 system, for the second command I can't
test, I don't have ipp2p support in the box.
Tom Eastep wrote:
> Kostas Kavourakis wrote:
>> I recently upgraded to iptables 1.4.2 and now shorewall won't start.
>
> I just installed iptables 1.4.2 and it looks badly broken to me. On my
> X86_64 system, this command segfaults:
>
> /usr/local/sbin/iptables -t mangle -L -n > /dev/null
>
> That causes Shorewall to think that mangle table support is not present.
>
> This command also segfaults:
>
> /usr/local/sbin/ipatbles -m ipp2p --edk -j ACCEPT
>
> So ipp2p support is not available either.
>
> All that aside, the reason for your particular failure is in
> /usr/share/Shorewall-perl/Shorewall/Config.pm, at line 1733.
>
> $capabilities{OLD_CONNTRACK_MATCH} = ! qt1( "$iptables -A
> $sillyname -m conntrack ! --ctorigdstport 1.2.3.4" );
> -------------
>
> In that line, "ctorigdstport" should be "ctorigdst".
>
> $capabilities{OLD_CONNTRACK_MATCH} = ! qt1( "$iptables -A
> $sillyname -m conntrack ! --ctorigdst 1.2.3.4" );
> ---------
> You can either:
>
> a) Edit the file and make the change; or
> b) Work around the problem by typing "shorewall show -f capabilities >
> /etc/shorewall/capabilities". Shorewall-perl will use the contents of
> the capabilities file rather that [miss-]detecting the capabilities itself.
>
> I will upload 4.2.5.3 later today to correct the problem.
>
> -Tom
>
>
> ------------------------------------------------------------------------
>
> ------------------------------------------------------------------------------
> Create and Deploy Rich Internet Apps outside the browser with Adobe(R)AIR(TM)
> software. With Adobe AIR, Ajax developers can use existing skills and code to
> build responsive, highly engaging applications that combine the power of local
> resources and data with the reach of the web. Download the Adobe AIR SDK and
> Ajax docs to start building applications today-http://p.sf.net/sfu/adobe-com
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Shorewall-users mailing list
> Shorewall-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/shorewall-users
--
Kostas Kavouracis <c...@freemail.gr>
My PGP keys:
https://defiant.cca.dynalias.com/~cca/c...@cca.dynalias.com.pgp.key
https://defiant.cca.dynalias.com/~cca/c...@freemail.gr.pgp.key
------------------------------------------------------------------------------
Create and Deploy Rich Internet Apps outside the browser with Adobe(R)AIR(TM)
software. With Adobe AIR, Ajax developers can use existing skills and code to
build responsive, highly engaging applications that combine the power of local
resources and data with the reach of the web. Download the Adobe AIR SDK and
Ajax docs to start building applications today-http://p.sf.net/sfu/adobe-com
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users
