Re: [Shorewall-users] Shorewall 5.2.3.2 doesn't start

Thu, 03 Oct 2019 22:46:33 -0700 

Am Donnerstag, 3. Oktober 2019, 20:11:00 CEST schrieb Justin Pryzby:
> On Thu, Oct 03, 2019 at 07:43:12PM +0200, Andreas Günther wrote:
> > was ok before.
> 
> before what ?
shorewall check
was ok before 
shorewall start

> 
> > I don't use eth0, eth1. Instead I use ens3 and docker0. I don't know where
> > eth0, eth1 are configured.
> 
> what is /etc/shorewall/interfaces

Thanks, there was my failure. I configured at first /etc/shorewall6/interfaces 
with

?FORMAT 2 
############################################################################### 
#ZONE   INTERFACE       OPTIONS 
net     ens3            tcpflags,forward=1,sourceroute=0,physical=ens3 
loc     br-23c43382e937 tcpflags,forward=1,physical=br-23c43382e937

Then I have forgotten to do the same at /etc/shorewall/interfaces
?FORMAT 2 
############################################################################### 
#ZONE   INTERFACE       OPTIONS 
net     NET_IF          
dhcp,tcpflags,nosmurfs,routefilter,logmartians,sourceroute=0,physical=eth0 
loc     LOC_IF          
tcpflags,nosmurfs,routefilter,logmartians,physical=eth1

Now it systemctl status shorewall shows

shorewall.service - Shorewall IPv4 firewall
   Loaded: loaded (/lib/systemd/system/shorewall.service; enabled; vendor 
preset: enabled)
   Active: active (exited) since Fri 2019-10-04 07:40:45 CEST; 2min 55s ago
  Process: 1808 ExecStart=/sbin/shorewall $OPTIONS start $STARTOPTIONS 
(code=exited, status=0/SUCCESS)
 Main PID: 1808 (code=exited, status=0/SUCCESS)

Okt 04 07:40:44 stgt shorewall[1808]: Shorewall configuration compiled to /
var/lib/shorewall/.start
Okt 04 07:40:45 stgt shorewall[1808]: Starting Shorewall....
Okt 04 07:40:45 stgt shorewall[1808]: Initializing...
Okt 04 07:40:45 stgt shorewall[1808]: Setting up Route Filtering...
Okt 04 07:40:45 stgt shorewall[1808]: Setting up Martian Logging...
Okt 04 07:40:45 stgt shorewall[1808]: Setting up Accept Source Routing...
Okt 04 07:40:45 stgt shorewall[1808]: Preparing iptables-restore input...
Okt 04 07:40:45 stgt shorewall[1808]: Running /sbin/iptables-restore --wait 
60...
Okt 04 07:40:45 stgt shorewall[1808]: done.
Okt 04 07:40:45 stgt systemd[1]: Started Shorewall IPv4 firewall.

Thanks for your support,

Andreas




_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to