Hello Tom
> Thus spoke Eric Wolzak:
>
> > Hello Tom
> > > I've corrected the problem that Ewald reported with Shorewall and busybox
> > > grep and have built a new .lrp. You can find it at:
> > >
> > As far as I can see know everything functions fine
>
I 'm sorry to have to report that there is still a problem with the
eigerstein ash
this is the part with the failures from the debug trace
+ [ -n # ]
+ read target client server protocol port cport address
+ echo #########################################################################
#######################################
+ rule=#########################################################################
#######################################
+ [ -n #########################################################################
####################################### ]
+ read target client server protocol port cport address
+ echo #RESULT CLIENT(S) SERVER(S) PROTO PORT(S) CLIENT PORT(S) ADDRESS
+ rule=#RESULT CLIENT(S) SERVER(S) PROTO PORT(S) CLIENT PORT(S) ADDRESS
+ [ -n #RESULT ]
+ read target client server protocol port cport address
+ echo ACCEPT local:eth1 fw:192.168.1.10 tcp www
+ rule=ACCEPT local:eth1 fw:192.168.1.10 tcp www
+ [ -n ACCEPT ]
+ process_rule
+ [ ACCEPT = ACCEPT ]
+ loglevel=
+ [ local:eth1 = local eàì^F^HÐì^F^Hìì^F^H×ì^F^H] ] -------point A
[: eàì^F^HÐì^F^Hìì^F^H×ì^F^H]: unknown operand
+ clientzone=local
+ client=eth1
+ source=
+ [ net = local ]
+ [ local = local ]
+ source=local
+ break
+ [ -z local ]
+ [ local = fw ]
+ eval source_hosts=$local_hosts
+ source_hosts=eth1:192.168.1.0/24
+ [ -n eth1 ]
+ client=-i eth1
+ dest_interface=
+ [ fw:192.168.1.10 = fw äì^F^HØì^F^Hðì^F^HÜì^F^H] ] -------point B
[: äì^F^HØì^F^Hðì^F^HÜì^F^H]: unknown operand
+ serverzone=f
+ server=192.168.1.10
+ [ 192.168.1.10 != 192.168.1.10 ]
+ serverport=
+ [ -n 192.168.1.10 ]
+ dest=
+ [ net = f ]
+ [ local = f ]
+ [ dmz = f ]
+ [ gw = f ]
+ [ fw = f ]
+ [ -z ]
+ echo Warning: Undefined Server Zone - rule "ACCEPT local:eth1 fw:192.168.1.10
tcp www" ignored
Warning: Undefined Server Zone - rule "ACCEPT local:eth1 fw:192.168.1.10 tcp www
" ignored
+ return
+ read target client server protocol port cport address
+ echo #LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
+ rule=#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE
+ [ -n #LAST ]
+ read target client server protocol port cport address
+ echo
+ rule=
+ [ -n ]
The errors occur at the following parts of shorewall
A) beginning of proces_rule
if [ "$client" = "${client%:*}" ]; then
clientzone="$client"
client=
else
The result is correct but I don't understand why this strange output
occurs. With the same values on the commandline, the function is
ok. ( I will update the ash myself, but it would be good if this would
function for the other that remain with eigerstein)
B)
This is still a problem with the ${server%%:*} type
in proces_rule
serverzone="${server%%:*}"
server="${server#*:}"
> Thanks for the update, Eric.
>
> -Tom
> --
> Tom Eastep \ Alt Email: [EMAIL PROTECTED]
> ICQ #60745924 \ Websites: http://seawall.sourceforge.net
> [EMAIL PROTECTED] \ http://seattlefirewall.dyndns.org
> Shoreline, Washington USA \ http://shorewall.sourceforge.net
> \_________________________________________
>
Almost there tom :)
Eric Wolzak
http://leaf.sourceforge.net/devel/ericw
_______________________________________________
Leaf-devel mailing list
[EMAIL PROTECTED]
http://lists.sourceforge.net/lists/listinfo/leaf-devel
