On 7/31/2014 3:21 AM, Georg Bixa wrote: > Am 2014-07-31 um 06:18 schrieb Tom Eastep:
>> >> I would like to understand why this happened. Would you be willing to >> send me your /etc/shorewall contents so that I could try to reproduce >> the problem? If so, please: >> >> a) shorewall show -f capabilities > /etc/shorewall/capabilities >> b) tar up the contents of /etc/shorewall >> c) rm /etc/shorewall/capabilities >> d) Send the tarball to me privately. >> >> While I'm no longer producing patches for Shorewall 4.4, I would like to >> be sure that the problem isn't present in the latest 4.5 and 4.6 >> releases. >> >> Thanks! >> -Tom > > Of course. I attached the tarball as asked. if you need any further > information, just email me, i would be happy to assist. > Thanks Georg. It appears that the problem does not exist in the current versions. I commented out your net->ene policy, and I see the following in the generated script: -A net_frwd -o ppp0 -g sfilter -A net_frwd -m conntrack --ctstate NEW,INVALID,UNTRACKED -j dynamic -A net_frwd -p tcp -j tcpflags -A net_frwd -o eth1 -j net-loc -A net_frwd -o vlan22 -j net-all <============ -A net_frwd -o vlan21 -j net-wlan -A net_frwd -o vlan23 -j net-test It would be a good idea for you to now remove the capabilities file from /etc/shorewall; I neglected to mention that in my earlier post. Thanks again, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Infragistics Professional Build stunning WinForms apps today! Reboot your WinForms applications with our WinForms controls. Build a bridge from your legacy apps to the future. http://pubads.g.doubleclick.net/gampad/clk?id=153845071&iu=/4140/ostg.clktrk
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
