-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Tom Eastep wrote: | | | Sebastien Routier wrote: | |> Hi, |> |> Using Mandrake 9.0 and Shorewall 1.3.8 |> ... |> |> My PC has two or three NIC: |> - eth0 connected to my cable modem. |> - eth1 connected to my hub. |> - usb0 connected to my Zaurus, this interface is not permanent, it is |> there when the Zaurus is turn on and plug in the PC through a USB |> port. But as soon as you un-plug the Zaurus the interface disapear. |> |> It was all working fine until I decided to connect my PDA (SHARP |> Zaurus SL-5500) on the network using usbdnet. Initially it worked fine |> but I eventually removed my PDA from the docking station and turned |> off the PC. Next time I booted the PC Shorewall failed with this error: |> |> -------------------- Shorewall restart ouput START --------------------- |> [root@hydrogen shorewall]# service shorewall restart |> Processing /etc/shorewall/shorewall.conf ... |> Processing /etc/shorewall/params ... |> Shorewall Not Currently Running |> Starting Shorewall... ... |> Policy ACCEPT for zaurus to net using chain zaurus2net |> Masqueraded Subnets and Hosts: |> To 0.0.0.0/0 from eth1 through eth0 |> Device "usb0" does not exist. |> /sbin/service: line 148: 23899 Terminated $debug |> $servicedir/$service $options |> -------------------- Shorewall restart ouput END --------------------- |> |> Shorewall complains about a inexistent usb0 device!?!? Well of course |> since my Zarus was not connected ?!?! It failed leaving my system wide |> open ?!? That is not good.... | | | Your system was NOT wide open. Shorewall is designed to leave your | system in a safe state if it dies during startup.
After a few other tests, it looks like your are right, I jumped to conclusion here, sorry if I made you jump out of your seat... | |> |> Does any body know of a way to configure an optional interface in |> Shorewall, or would you have anyother idea to prevent Shorewall from |> failing if an interface does not exists? |> | | Yes RTFM -- If you put a device name in the SUBNET column in | /etc/shorewall/masq then that device must be started before Shorewall | will start. If there is a possibility (as in your case) that the | interface will not be started then you will have to place an address | (host or subnet) in that column. | | -Tom Thanks Tom.... Yes RTFM was the answer, it all works like a charm (almost) now. To go from a 2 NIC PC to a 2 NIC with the Zaurus the only thing I had to do was modify the file /etc/shorewall/masq by adding a single line: eth0 192.168.129.0/24 Now the only issue is that if the Zaurus is both connected and turned on before and while the PC boots, the usb0 interface is not configured properly. I suspect this to be a minor problem with hotplug. Once the PC has finished booting if I turn off the Zaurus and turn it back on, hotplug configures the usb0 interface properly and every thing else works fine. Shorewall side of things seam to work fine. Thanks. /Sebast. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQE9saC5FDKdgiilqPIRArMRAJ9AKMuQ1geM/EmglYe21sZN2fHOfwCggcrs cebQeCDqSdWigXluvHcpwDs= =xO7N -----END PGP SIGNATURE-----
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com