Thanks Tom, Working firewall finishes 'sudo shorewall restart' with:
Processing /etc/shorewall/params ... Restarting Shorewall.... Initializing... Processing /etc/shorewall/init ... Setting up Route Filtering... Setting up Martian Logging... Setting up Proxy ARP... Preparing iptables-restore input... Running /sbin/iptables-restore... IPv4 Forwarding Enabled Processing /etc/shorewall/start ... Processing /etc/shorewall/started ... done. Problem firewall stops after 'sudo shorewall restart' at: Shorewall configuration compiled to /var/lib/shorewall/.restart Any hints on where to look? - I have already confirmed Shorewall.conf settings are identical. Kind regards, Trent O'Callaghan Network Manager www.nearmap.com -----Original Message----- From: Tom Eastep [mailto:[email protected]] Sent: Friday, 19 February 2010 9:01 AM To: [email protected] Cc: 'Shorewall Users' Subject: Re: [Shorewall-users] DNAT src inet:58.108.209.135 rule failling to appear in iptables (version 4.4.6-1) Trent O'Callaghan wrote: > Hi Tom, > > I am running Shorewall-perl version 4.4.6-1 on Debian > > Tested on one of my other firewalls I get the desired result!? :) > > 0 0 log1 tcp -- * * 58.108.209.135 > 180.233.128.7 [goto] tcp spt:80 dpt:8000 > 0 0 DNAT tcp -- * * !58.108.209.135 > 180.233.128.7 tcp dpt:80 to:10.240.9.7 > > I will check for typing errors. :P The best advice I can give you is to 'sudo shorewall restart' rather than 'sudo service shorewall restart'; that way, you can see what is really going on. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Download Intel® Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
