Hi Tom,
For comparison I have attached the requested
'sh -x /sbin/shorewall safe-restart 2> trace ' as trace-safe.txt
And
'sh -x /sbin/shorewall restart 2> trace-ok' as trace-ok.txt
for comparison.
The process wait during safe-restart (150 seconds) is occurring during;
+ awk BEGIN { sline=""; };\
/^-j/ { print sline $0; next };\
/-m policy.*-j/ { print $0; next };\
/-m policy/ { sline=$0; next };\
/--mask ff/ { sub( /--mask ff/, "--mask 0xff" ) };\
{ print ; sline="" }
-Trent
-----Original Message-----
From: Tom Eastep [mailto:[email protected]]
Sent: Tuesday, 15 June 2010 10:32 PM
To: [email protected]
Subject: Re: [Shorewall-users] When starting a firewall setup...
We will need to see a trace to understand what is going wrong on your system
(I'm unable to reproduce it here):
sh -x /sbin/shorewall safe-restart 2> trace
and forward the 'trace' file.
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
r...@nper-r1:~# cat trace
+ g_debugging=
+ [ 1 -gt 0 ]
+ [ xsafe-restart = xdebug -o xsafe-restart = xtrace ]
+ nolock=
+ [ 1 -gt 0 ]
+ [ safe-restart = nolock ]
+ SHOREWALL_DIR=
+ g_noroutes=
+ g_purge=
+ g_ipt_options=-nv
+ g_fast=
+ g_verbose_offset=0
+ g_use_verbosity=
+ g_debug=
+ g_export=
+ g_refreshchains=
+ finished=0
+ [ 0 -eq 0 ]
+ [ 1 -eq 0 ]
+ option=safe-restart
+ finished=1
+ [ 1 -eq 0 ]
+ [ 1 -eq 0 ]
+ PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
+ MUTEX_TIMEOUT=
+ SHAREDIR=/usr/share/shorewall
+ CONFDIR=/etc/shorewall
+ g_product=Shorewall
+ g_recovering=
+ g_timestamp=
+ [ -f /etc/shorewall/vardir ]
+ [ -n /var/lib/shorewall ]
+ [ ! -f /var/lib/shorewall/firewall ]
+ g_firewall=/var/lib/shorewall/firewall
+ . /usr/share/shorewall/lib.base
+ SHOREWALL_LIBVERSION=40407
+ SHOREWALL_CAPVERSION=40408
+ [ -n /var/lib/shorewall ]
+ [ -n /usr/share/shorewall ]
+ [ -n /etc/shorewall ]
+ [ -z ]
+ . /usr/share/shorewall/lib.common
+ LEFTSHIFT=<<
+ . /usr/share/shorewall/lib.cli
+ version_file=/usr/share/shorewall/version
+ [ -f /usr/share/shorewall/version ]
+ cat /usr/share/shorewall/version
+ SHOREWALL_VERSION=4.4.10-Beta4
+ banner=Shorewall-4.4.10-Beta4 Status at -
+ echo -e
+ g_ring_bell=echo \a
+ g_echo_e=echo
+ echo -n Testing
+ g_echo_n=-n
+ COMMAND=safe-restart
+ get_config Yes
+ local prog
+ ensure_config_path
+ local F
+ F=/usr/share/shorewall/configpath
+ [ -z ]
+ [ -f /usr/share/shorewall/configpath ]
+ . /usr/share/shorewall/configpath
+ CONFIG_PATH=/etc/shorewall:/usr/share/shorewall
+ [ -n ]
+ [ Yes = Yes ]
+ find_file params
+ local saveifs
+ saveifs=
+ local directory
+ split /etc/shorewall:/usr/share/shorewall
+ local ifs
+ ifs=
+ IFS=:
+ echo /etc/shorewall /usr/share/shorewall
+ IFS=
+ [ -f /etc/shorewall/params ]
+ echo /etc/shorewall/params
+ return
+ params=/etc/shorewall/params
+ [ -f /etc/shorewall/params ]
+ . /etc/shorewall/params
+ VPN=lan:192.168.1.4
+ find_file shorewall.conf
+ local saveifs
+ saveifs=
+ local directory
+ split /etc/shorewall:/usr/share/shorewall
+ local ifs
+ ifs=
+ IFS=:
+ echo /etc/shorewall /usr/share/shorewall
+ IFS=
+ [ -f /etc/shorewall/shorewall.conf ]
+ echo /etc/shorewall/shorewall.conf
+ return
+ config=/etc/shorewall/shorewall.conf
+ [ -f /etc/shorewall/shorewall.conf ]
+ [ -r /etc/shorewall/shorewall.conf ]
+ . /etc/shorewall/shorewall.conf
+ STARTUP_ENABLED=Yes
+ VERBOSITY=1
+ LOGFILE=/var/log/messages
+ STARTUP_LOG=/var/log/shorewall-init.log
+ LOG_VERBOSITY=2
+ LOGFORMAT=Shorewall:%s:%s:
+ LOGTAGONLY=No
+ LOGRATE=
+ LOGBURST=
+ LOGALLNEW=
+ BLACKLIST_LOGLEVEL=
+ MACLIST_LOG_LEVEL=info
+ TCP_FLAGS_LOG_LEVEL=info
+ SMURF_LOG_LEVEL=info
+ LOG_MARTIANS=Yes
+ IPTABLES=
+ IP=
+ TC=
+ IPSET=
+ PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
+ SHOREWALL_SHELL=/bin/sh
+ SUBSYSLOCK=
+ MODULESDIR=
+ CONFIG_PATH=/etc/shorewall:/usr/share/shorewall
+ RESTOREFILE=
+ IPSECFILE=zones
+ LOCKFILE=
+ DROP_DEFAULT=Drop
+ REJECT_DEFAULT=Reject
+ ACCEPT_DEFAULT=none
+ QUEUE_DEFAULT=none
+ NFQUEUE_DEFAULT=none
+ RSH_COMMAND=ssh ${ro...@${system} ${command}
+ RCP_COMMAND=scp ${files} ${ro...@${system}:${destination}
+ IP_FORWARDING=Keep
+ ADD_IP_ALIASES=No
+ ADD_SNAT_ALIASES=No
+ RETAIN_ALIASES=No
+ TC_ENABLED=Internal
+ TC_EXPERT=No
+ TC_PRIOMAP=2 3 3 3 2 3 1 1 2 2 2 2 2 2 2 2
+ CLEAR_TC=Yes
+ MARK_IN_FORWARD_CHAIN=No
+ CLAMPMSS=No
+ ROUTE_FILTER=Yes
+ DETECT_DNAT_IPADDRS=No
+ MUTEX_TIMEOUT=60
+ ADMINISABSENTMINDED=Yes
+ BLACKLISTNEWONLY=Yes
+ DELAYBLACKLISTLOAD=No
+ MODULE_SUFFIX=ko
+ DISABLE_IPV6=No
+ BRIDGING=No
+ DYNAMIC_ZONES=No
+ PKTTYPE=Yes
+ NULL_ROUTE_RFC1918=No
+ MACLIST_TABLE=filter
+ MACLIST_TTL=
+ SAVE_IPSETS=No
+ MAPOLDACTIONS=No
+ FASTACCEPT=No
+ IMPLICIT_CONTINUE=No
+ HIGH_ROUTE_MARKS=No
+ USE_ACTIONS=Yes
+ OPTIMIZE=0
+ EXPORTPARAMS=Yes
+ EXPAND_POLICIES=Yes
+ KEEP_RT_TABLES=No
+ DELETE_THEN_ADD=Yes
+ MULTICAST=No
+ DONT_LOAD=
+ AUTO_COMMENT=Yes
+ MANGLE_ENABLED=Yes
+ USE_DEFAULT_RT=No
+ RESTORE_DEFAULT_ROUTE=Yes
+ AUTOMAKE=No
+ WIDE_TC_MARKS=No
+ TRACK_PROVIDERS=No
+ ZONE2ZONE=2
+ ACCOUNTING=Yes
+ DYNAMIC_BLACKLIST=Yes
+ OPTIMIZE_ACCOUNTING=No
+ LOAD_HELPERS_ONLY=No
+ BLACKLIST_DISPOSITION=DROP
+ MACLIST_DISPOSITION=REJECT
+ TCP_FLAGS_DISPOSITION=DROP
+ ensure_config_path
+ local F
+ F=/usr/share/shorewall/configpath
+ [ -z /etc/shorewall:/usr/share/shorewall ]
+ [ -n ]
+ id -u
+ [ -z -a 0 = 0 ]
+ [ = Yes ]
+ [ -n ]
+ mywhich iptables
+ IPTABLES=/sbin/iptables
+ [ -z /sbin/iptables ]
+ [ -n ]
+ IP=ip
+ [ -n ]
+ IPSET=ipset
+ [ -n ]
+ TC=tc
+ [ -n ]
+ RESTOREFILE=restore
+ validate_restorefile RESTOREFILE
+ [ = Yes ]
+ [ -z Shorewall:%s:%s: ]
+ [ -n Shorewall:%s:%s: ]
+ LOGFORMAT=Shorewall:
+ [ -n /var/log/shorewall-init.log ]
+ [ -n 2 ]
+ [ -n /bin/sh ]
+ [ ! -x /bin/sh ]
+ [ -n ]
+ VERBOSITY=1
+ [ 1 -lt -1 ]
+ [ 1 -gt 2 ]
+ hostname
+ g_hostname=nper-r1
+ [ -n ssh ${ro...@${system} ${command} ]
+ [ -n scp ${files} ${ro...@${system}:${destination} ]
+ AUTOMAKE=
+ LOAD_HELPERS_ONLY=
+ shift
+ safe_commands
+ local finished
+ finished=0
+ read -t 0 junk
+ [ 2 -eq 2 -a ! -x /bin/bash ]
+ [ 0 -eq 0 -a 0 -gt 0 ]
+ [ -n Yes ]
+ shorewall_is_started
+ qt /sbin/iptables -L shorewall -n
+ /sbin/iptables -L shorewall -n
+ running=Yes
+ [ safe-restart = safe-start -a -n Yes ]
+ [ safe-restart = safe-start -o -z Yes ]
+ command=restart
+ progress_message3 Compiling...
+ local timestamp
+ timestamp=
+ [ 1 -ge 0 ]
+ [ -n ]
+ echo Compiling...
+ compiler nolock compile /var/lib/shorewall/.restart
+ id -u
+ [ 0 -ne 0 ]
+ ensure_config_path
+ local F
+ F=/usr/share/shorewall/configpath
+ [ -z /etc/shorewall:/usr/share/shorewall ]
+ [ -n ]
+ debugflags=-w
+ [ -n ]
+ [ -n ]
+ [ nolock = debug -o nolock = trace ]
+ [ nolock = nolock ]
+ shift
+ shift
+ options=--verbose=1
+ [ -n /var/log/shorewall-init.log ]
+ options=--verbose=1 --log=/var/log/shorewall-init.log
+ [ -n 2 ]
+ options=--verbose=1 --log=/var/log/shorewall-init.log --log_verbosity=2
+ [ -n ]
+ [ -n ]
+ [ -n ]
+ [ -n ]
+ [ -n ]
+ [ = trace ]
+ [ -n ]
+ set -a
+ run_user_exit params
+ local user_exit
+ find_file params
+ local saveifs
+ saveifs=
+ local directory
+ split /etc/shorewall:/usr/share/shorewall
+ local ifs
+ ifs=
+ IFS=:
+ echo /etc/shorewall /usr/share/shorewall
+ IFS=
+ [ -f /etc/shorewall/params ]
+ echo /etc/shorewall/params
+ return
+ user_exit=/etc/shorewall/params
+ [ -f /etc/shorewall/params ]
+ progress_message Processing /etc/shorewall/params ...
+ local timestamp
+ timestamp=
+ [ 1 -gt 1 ]
+ . /etc/shorewall/params
+ VPN=lan:192.168.1.4
+ set +a
+ perl -w /usr/share/shorewall/compiler.pl --verbose=1
--log=/var/log/shorewall-init.log --log_verbosity=2 /var/lib/shorewall/.restart
+ RESTOREFILE=.safe
+ g_restorepath=/var/lib/shorewall/.safe
+ save_config
+ local result
+ result=1
+ iptables_save=/sbin/iptables-save
+ [ -x /sbin/iptables-save ]
+ shorewall_is_started
+ qt /sbin/iptables -L shorewall -n
+ /sbin/iptables -L shorewall -n
+ [ -d /var/lib/shorewall ]
+ [ -f /var/lib/shorewall/.safe -a ! -x /var/lib/shorewall/.safe ]
+ validate_restorefile RESTOREFILE
+ chain_exists dynamic
+ qt1 /sbin/iptables -L dynamic -n
+ local status
+ [ 1 ]
+ /sbin/iptables -L dynamic -n
+ status=0
+ [ 0 -ne 4 ]
+ return 0
+ /sbin/iptables -L dynamic -n
+ echo Dynamic Rules Saved
+ do_save
+ local status
+ status=0
+ [ -f /var/lib/shorewall/firewall ]
+ /sbin/iptables-save
+ iptablesbug
+ qt mywhich awk
+ mywhich awk
+ awk BEGIN { sline=""; };\
/^-j/ { print sline $0; next };\
/-m policy.*-j/ { print $0; next };\
/-m policy/ { sline=$0; next };\
/--mask ff/ { sub( /--mask ff/, "--mask 0xff" ) };\
{ print ; sline="" }
+ cp -f /var/lib/shorewall/firewall /var/lib/shorewall/.safe
+ mv -f /var/lib/shorewall/restore-29197 /var/lib/shorewall/.safe-iptables
+ chmod +x /var/lib/shorewall/.safe
+ echo Currently-running Configuration Saved to /var/lib/shorewall/.safe
+ run_user_exit save
+ local user_exit
+ find_file save
+ local saveifs
+ saveifs=
+ local directory
+ split /etc/shorewall:/usr/share/shorewall
+ local ifs
+ ifs=
+ IFS=:
+ echo /etc/shorewall /usr/share/shorewall
+ IFS=
+ [ -f /etc/shorewall/save ]
+ [ -f /usr/share/shorewall/save ]
+ echo /etc/shorewall/save
+ user_exit=/etc/shorewall/save
+ [ -f /etc/shorewall/save ]
+ return 0
+ return 0
+ progress_message3 Restarting...
+ local timestamp
+ timestamp=
+ [ 1 -ge 0 ]
+ [ -n ]
+ echo Restarting...
+ [ -n ]
+ mutex_on
+ local try
+ try=0
+ local lockf
+ local lockf=/var/lock/shorewall
+ MUTEX_TIMEOUT=60
+ [ 60 -gt 0 ]
+ [ -d /var/lib/shorewall ]
+ qt mywhich lockfile
+ mywhich lockfile
+ [ -f /var/lock/shorewall -a 0 -lt 60 ]
+ [ 0 -lt 60 ]
+ echo 29197
+ /var/lib/shorewall/.restart restart
+ echo -n Do you want to accept the new firewall configuration? [y/n]
+ read_yesno_with_timeout
+ read -t 60 yn
+ [ 2 -eq 2 ]
+ test -x /bin/bash
+ /bin/bash -c read -t 60 yn ; if [ "$yn" == "y" ] ; then exit 0 ; else exit 1
; fi
+ return 0
+ echo New configuration has been accepted
+ [ -n ]
+ mutex_off
+ rm -f /var/lock/shorewall
r...@nper-r1:~# cat trace-ok
+ g_debugging=
+ [ 1 -gt 0 ]
+ [ xrestart = xdebug -o xrestart = xtrace ]
+ nolock=
+ [ 1 -gt 0 ]
+ [ restart = nolock ]
+ SHOREWALL_DIR=
+ g_noroutes=
+ g_purge=
+ g_ipt_options=-nv
+ g_fast=
+ g_verbose_offset=0
+ g_use_verbosity=
+ g_debug=
+ g_export=
+ g_refreshchains=
+ finished=0
+ [ 0 -eq 0 ]
+ [ 1 -eq 0 ]
+ option=restart
+ finished=1
+ [ 1 -eq 0 ]
+ [ 1 -eq 0 ]
+ PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
+ MUTEX_TIMEOUT=
+ SHAREDIR=/usr/share/shorewall
+ CONFDIR=/etc/shorewall
+ g_product=Shorewall
+ g_recovering=
+ g_timestamp=
+ [ -f /etc/shorewall/vardir ]
+ [ -n /var/lib/shorewall ]
+ [ ! -f /var/lib/shorewall/firewall ]
+ g_firewall=/var/lib/shorewall/firewall
+ . /usr/share/shorewall/lib.base
+ SHOREWALL_LIBVERSION=40407
+ SHOREWALL_CAPVERSION=40408
+ [ -n /var/lib/shorewall ]
+ [ -n /usr/share/shorewall ]
+ [ -n /etc/shorewall ]
+ [ -z ]
+ . /usr/share/shorewall/lib.common
+ LEFTSHIFT=<<
+ . /usr/share/shorewall/lib.cli
+ version_file=/usr/share/shorewall/version
+ [ -f /usr/share/shorewall/version ]
+ cat /usr/share/shorewall/version
+ SHOREWALL_VERSION=4.4.10-Beta4
+ banner=Shorewall-4.4.10-Beta4 Status at -
+ echo -e
+ g_ring_bell=echo \a
+ g_echo_e=echo
+ echo -n Testing
+ g_echo_n=-n
+ COMMAND=restart
+ get_config Yes Yes
+ local prog
+ ensure_config_path
+ local F
+ F=/usr/share/shorewall/configpath
+ [ -z ]
+ [ -f /usr/share/shorewall/configpath ]
+ . /usr/share/shorewall/configpath
+ CONFIG_PATH=/etc/shorewall:/usr/share/shorewall
+ [ -n ]
+ [ Yes = Yes ]
+ find_file params
+ local saveifs
+ saveifs=
+ local directory
+ split /etc/shorewall:/usr/share/shorewall
+ local ifs
+ ifs=
+ IFS=:
+ echo /etc/shorewall /usr/share/shorewall
+ IFS=
+ [ -f /etc/shorewall/params ]
+ echo /etc/shorewall/params
+ return
+ params=/etc/shorewall/params
+ [ -f /etc/shorewall/params ]
+ . /etc/shorewall/params
+ VPN=lan:192.168.1.4
+ find_file shorewall.conf
+ local saveifs
+ saveifs=
+ local directory
+ split /etc/shorewall:/usr/share/shorewall
+ local ifs
+ ifs=
+ IFS=:
+ echo /etc/shorewall /usr/share/shorewall
+ IFS=
+ [ -f /etc/shorewall/shorewall.conf ]
+ echo /etc/shorewall/shorewall.conf
+ return
+ config=/etc/shorewall/shorewall.conf
+ [ -f /etc/shorewall/shorewall.conf ]
+ [ -r /etc/shorewall/shorewall.conf ]
+ . /etc/shorewall/shorewall.conf
+ STARTUP_ENABLED=Yes
+ VERBOSITY=1
+ LOGFILE=/var/log/messages
+ STARTUP_LOG=/var/log/shorewall-init.log
+ LOG_VERBOSITY=2
+ LOGFORMAT=Shorewall:%s:%s:
+ LOGTAGONLY=No
+ LOGRATE=
+ LOGBURST=
+ LOGALLNEW=
+ BLACKLIST_LOGLEVEL=
+ MACLIST_LOG_LEVEL=info
+ TCP_FLAGS_LOG_LEVEL=info
+ SMURF_LOG_LEVEL=info
+ LOG_MARTIANS=Yes
+ IPTABLES=
+ IP=
+ TC=
+ IPSET=
+ PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
+ SHOREWALL_SHELL=/bin/sh
+ SUBSYSLOCK=
+ MODULESDIR=
+ CONFIG_PATH=/etc/shorewall:/usr/share/shorewall
+ RESTOREFILE=
+ IPSECFILE=zones
+ LOCKFILE=
+ DROP_DEFAULT=Drop
+ REJECT_DEFAULT=Reject
+ ACCEPT_DEFAULT=none
+ QUEUE_DEFAULT=none
+ NFQUEUE_DEFAULT=none
+ RSH_COMMAND=ssh ${ro...@${system} ${command}
+ RCP_COMMAND=scp ${files} ${ro...@${system}:${destination}
+ IP_FORWARDING=Keep
+ ADD_IP_ALIASES=No
+ ADD_SNAT_ALIASES=No
+ RETAIN_ALIASES=No
+ TC_ENABLED=Internal
+ TC_EXPERT=No
+ TC_PRIOMAP=2 3 3 3 2 3 1 1 2 2 2 2 2 2 2 2
+ CLEAR_TC=Yes
+ MARK_IN_FORWARD_CHAIN=No
+ CLAMPMSS=No
+ ROUTE_FILTER=Yes
+ DETECT_DNAT_IPADDRS=No
+ MUTEX_TIMEOUT=60
+ ADMINISABSENTMINDED=Yes
+ BLACKLISTNEWONLY=Yes
+ DELAYBLACKLISTLOAD=No
+ MODULE_SUFFIX=ko
+ DISABLE_IPV6=No
+ BRIDGING=No
+ DYNAMIC_ZONES=No
+ PKTTYPE=Yes
+ NULL_ROUTE_RFC1918=No
+ MACLIST_TABLE=filter
+ MACLIST_TTL=
+ SAVE_IPSETS=No
+ MAPOLDACTIONS=No
+ FASTACCEPT=No
+ IMPLICIT_CONTINUE=No
+ HIGH_ROUTE_MARKS=No
+ USE_ACTIONS=Yes
+ OPTIMIZE=0
+ EXPORTPARAMS=Yes
+ EXPAND_POLICIES=Yes
+ KEEP_RT_TABLES=No
+ DELETE_THEN_ADD=Yes
+ MULTICAST=No
+ DONT_LOAD=
+ AUTO_COMMENT=Yes
+ MANGLE_ENABLED=Yes
+ USE_DEFAULT_RT=No
+ RESTORE_DEFAULT_ROUTE=Yes
+ AUTOMAKE=No
+ WIDE_TC_MARKS=No
+ TRACK_PROVIDERS=No
+ ZONE2ZONE=2
+ ACCOUNTING=Yes
+ DYNAMIC_BLACKLIST=Yes
+ OPTIMIZE_ACCOUNTING=No
+ LOAD_HELPERS_ONLY=No
+ BLACKLIST_DISPOSITION=DROP
+ MACLIST_DISPOSITION=REJECT
+ TCP_FLAGS_DISPOSITION=DROP
+ ensure_config_path
+ local F
+ F=/usr/share/shorewall/configpath
+ [ -z /etc/shorewall:/usr/share/shorewall ]
+ [ -n ]
+ id -u
+ [ -z -a 0 = 0 ]
+ [ = Yes ]
+ [ -n ]
+ mywhich iptables
+ IPTABLES=/sbin/iptables
+ [ -z /sbin/iptables ]
+ [ -n ]
+ IP=ip
+ [ -n ]
+ IPSET=ipset
+ [ -n ]
+ TC=tc
+ [ -n ]
+ RESTOREFILE=restore
+ validate_restorefile RESTOREFILE
+ [ Yes = Yes ]
+ [ -z Shorewall:%s:%s: ]
+ [ -n Shorewall:%s:%s: ]
+ LOGFORMAT=Shorewall:
+ [ -n /var/log/shorewall-init.log ]
+ [ -n 2 ]
+ [ -n /bin/sh ]
+ [ ! -x /bin/sh ]
+ [ -n ]
+ VERBOSITY=1
+ [ 1 -lt -1 ]
+ [ 1 -gt 2 ]
+ hostname
+ g_hostname=nper-r1
+ [ -n ssh ${ro...@${system} ${command} ]
+ [ -n scp ${files} ${ro...@${system}:${destination} ]
+ AUTOMAKE=
+ LOAD_HELPERS_ONLY=
+ shift
+ restart_command
+ local finished
+ finished=0
+ local rc
+ rc=0
+ local restorefile
+ [ 0 -eq 0 -a 0 -gt 0 ]
+ [ -n Yes ]
+ [ -z -a -n ]
+ [ -z ]
+ progress_message3 Compiling...
+ local timestamp
+ timestamp=
+ [ 1 -ge 0 ]
+ [ -n ]
+ echo Compiling...
+ compiler compile /var/lib/shorewall/.restart
+ id -u
+ [ 0 -ne 0 ]
+ ensure_config_path
+ local F
+ F=/usr/share/shorewall/configpath
+ [ -z /etc/shorewall:/usr/share/shorewall ]
+ [ -n ]
+ debugflags=-w
+ [ -n ]
+ [ -n ]
+ [ compile = debug -o compile = trace ]
+ [ compile = nolock ]
+ shift
+ options=--verbose=1
+ [ -n /var/log/shorewall-init.log ]
+ options=--verbose=1 --log=/var/log/shorewall-init.log
+ [ -n 2 ]
+ options=--verbose=1 --log=/var/log/shorewall-init.log --log_verbosity=2
+ [ -n ]
+ [ -n ]
+ [ -n ]
+ [ -n ]
+ [ -n ]
+ [ = trace ]
+ [ -n ]
+ set -a
+ run_user_exit params
+ local user_exit
+ find_file params
+ local saveifs
+ saveifs=
+ local directory
+ split /etc/shorewall:/usr/share/shorewall
+ local ifs
+ ifs=
+ IFS=:
+ echo /etc/shorewall /usr/share/shorewall
+ IFS=
+ [ -f /etc/shorewall/params ]
+ echo /etc/shorewall/params
+ return
+ user_exit=/etc/shorewall/params
+ [ -f /etc/shorewall/params ]
+ progress_message Processing /etc/shorewall/params ...
+ local timestamp
+ timestamp=
+ [ 1 -gt 1 ]
+ . /etc/shorewall/params
+ VPN=lan:192.168.1.4
+ set +a
+ perl -w /usr/share/shorewall/compiler.pl --verbose=1
--log=/var/log/shorewall-init.log --log_verbosity=2 /var/lib/shorewall/.restart
+ [ -n ]
+ mutex_on
+ local try
+ try=0
+ local lockf
+ local lockf=/var/lock/shorewall
+ MUTEX_TIMEOUT=60
+ [ 60 -gt 0 ]
+ [ -d /var/lib/shorewall ]
+ qt mywhich lockfile
+ mywhich lockfile
+ [ -f /var/lock/shorewall -a 0 -lt 60 ]
+ [ 0 -lt 60 ]
+ echo 29756
+ run_it /var/lib/shorewall/.restart restart
+ local script
+ local options
+ local version
+ export VARDIR
+ script=/var/lib/shorewall/.restart
+ shift
+ get_script_version /var/lib/shorewall/.restart
+ local temp
+ local version
+ local ifs
+ local digits
+ /bin/sh /var/lib/shorewall/.restart version
+ sed s/-.*//
+ temp=4.4.10
+ [ 0 -ne 0 ]
+ ifs=
+ IFS=.
+ echo 4 4 10
+ temp=4 4 10
+ IFS=
+ digits=0
+ printf %02d 4
+ version=04
+ digits=1
+ [ 1 -eq 3 ]
+ printf %02d 4
+ version=0404
+ digits=2
+ [ 2 -eq 3 ]
+ printf %02d 10
+ version=040410
+ digits=3
+ [ 3 -eq 3 ]
+ break
+ echo 040410
+ version=040410
+ [ 040410 -lt 040408 ]
+ options=-
+ [ -n ]
+ [ -n ]
+ [ -n ]
+ [ -n ]
+ options=-V 1
+ [ -n restore ]
+ options=-V 1 -R restore
+ /bin/sh /var/lib/shorewall/.restart -V 1 -R restore restart
+ rc=0
+ [ -n ]
+ mutex_off
+ rm -f /var/lock/shorewall
+ return 0
------------------------------------------------------------------------------
ThinkGeek and WIRED's GeekDad team up for the Ultimate
GeekDad Father's Day Giveaway. ONE MASSIVE PRIZE to the
lucky parental unit. See the prize list and enter to win:
http://p.sf.net/sfu/thinkgeek-promo
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
