On 07/06/2012 10:15 AM, Matthias Sitte wrote: > I'd be happy to share more details if you tell me what you need > (versions of which packages etc) to see why it works. It's a clean > system with nothing but Shorewall installed. The config files for > Shorewall are pretty simple. >
If you are able to create connections from the container to other hosts with Shorewall started, you are not experiencing the problem that others have run into. >> >>> Of course, Shorewall should automatically start when rebooting. >>> Making the appropriate changes to shorewall.conf and >>> /etc/default/shorewall it should all be fine -- but it ain't >>> somehow. > > Anyway, right after the system comes up, `iptables -L' gives me empty lists: > > # iptables -L > Chain INPUT (policy ACCEPT) > target prot opt source destination > > Chain FORWARD (policy ACCEPT) > target prot opt source destination > > Chain OUTPUT (policy ACCEPT) > target prot opt source destination > > Stopping/starting Shorewall as described above makes it work nicely, though. Try placing that command in /etc/shorewall/started and see if that still gives the same output when shorewall runs at boot (output should be in /var/log/shorewall-init.log so long as stdout is being directed there). -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
