On Tue, 23 Jul 2002, Russ Price wrote: > In other words: > > ACCEPT loc fw udp 33434-33463 > > gives me > > Rule "ACCEPT loc fw udp 33434-33463" validated. > > when I try shorewall check. If I try shorewall restart: > > iptables v1.2.6a: invalid UDP port/service `33434-33463' specified > Try `iptables -h' or 'iptables --help' for more information. > Processing /etc/shorewall/stop ... > Terminated >
As is emphatically stated in the shorewall documentation, "check" peforms a CURSORY check. In particular, I have not chosen to replicate the iptables parser in my shell scripts. > If I set up rules with comma-separated lists of ports, iptables will > digest it without problems. Or if you use the proper syntax for a port range (<low port>:<high port>) then iptables will be happy. > > In any case, whether I open one port on the local side or thirty, the > first hop of the traceroute fails. > I can't reproduce this problem -- are you seeing any Shorewall messages in your log? -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ [EMAIL PROTECTED] ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
