Re: [Shorewall-users] Crash When Trying to Compile -Lite Script

Sun, 28 Apr 2019 00:30:26 -0700 

On 4/28/2019 6:02 AM, C. Cook wrote:
> Hi,
> 
> Following the instructions Here:
> 
> http://www.shorewall.net/Shorewall-Lite.html
> 
> Trying to get shorewall-lite working in Linino Linux (nee OpenWRT) on an
> Arduino Yun.
> 
> I have the Shorewall config files set up in the export dir and am trying
> to load now. (BTW 'load' is depreciated, maybe update the wiki)
> 

Patch welcome.

> # shorewall remote-start sagitta
>       WARNING: ./shorewallrc does not exist; using settings from
> /usr/share/shorewall/shorewalrc
> root@sagitta's password:
> ash: /usr/libexec/shorewall-lite/shorecap: not found
>    ERROR: Capturing capabilities on system sagitta failed
> 
> Ok, so on the target shorecap is in /usr/share/shorewall-lite/, but
> /usr/libexec/ doesn't exist so I symlinked it to /usr/sbin/.
> 

Should not be needed.

> # shorewall remote-start sagitta
>       WARNING: ./shorewallrc does not exist; using settings from
> /usr/share/shorewall/shorewalrc
> root@sagitta's password:
> Compiling using Shorewall 5.1.10.2...
>    ERROR: The -e compiler option requires a capabilities file
> /usr/share/shorewall/coreversion (EOF)
> 
> 

We don't support Linino Linux, however since it is based on OpenWrt it
could work provided that you tailor, at the very least, the Installer
and the RC file to your needs.

What Rc file did you use to install Shorewall on the firewall system
('~/.shorewallrc' on the firewall system)?
If the directory structure is  not the same on the administrative system
and the firewall system you then need a copy of the Rc file in the
export directory on the administrative system (remote-getrc).


From:

http://www.shorewall.org/Shorewall-Lite.html#Shorecap

"The capabilities file may also be creating using /sbin/shorewall-lite:
shorewall-lite show -f capabilities > capabilities"

You simply have to pull that file in the export directory on the
administrative system.

-Matt
-- 
Matt Darfeuille


_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to