Hi,
I'm using shorewall (4.5.18) and lsm (0.163) with a two ISP setup.
I followed documentation and the linuxfest presentation (all provider
balance), but choose to ping remote ip instead of the local gateway.
lsm is started as a service, not by shorewall.
The setup is working, but I'm not sure on
Hi! This is my first email to the this mail list.
I am playing with ipsets and shorewall and I'm failing to create (using
shorewall) an ipset with a default timeout.
When shorewall compiles it throws me a warning saying that the ipset does
not exist (it is right), and when it starts at some stage
On 5/5/2014 9:24 AM, Filippo Carletti wrote:
> Hi,
> I'm using shorewall (4.5.18) and lsm (0.163) with a two ISP setup.
> I followed documentation and the linuxfest presentation (all provider
> balance), but choose to ping remote ip instead of the local gateway.
> lsm is started as a service, not b
Am 03.05.2014 00:03, schrieb Tom Eastep:
> If that is the case, then there is no point in making tun1 a provider
> interface (you never need the default route out of it). Simply configure
> OpenVPN to add a route to x.x.x.245/28 out of tun1 when the VPN is
> brought up.
>
>
Hi Tom, it took me a wh
On 5/5/2014 12:51 PM, Michael Kress wrote:
> Hi Tom, it took me a while to get to testing ... I've done it the
> minimal way - I've added two more lines in rtrules and changed provider
> order (that has probably not been necessary) and everything works now as
> I wanted it to.
Glad to hear th
Hi List,
Thanks in advance for reading this, any help is gratefully appreciated.
odd problem, after upgrading to debian wheezy (Shorewall-4.5.5.3) from
debian squeeze and (Shorewall-4.4.11.6-3+squeeze1)
when doing a start,restart or refresh I see the error: ERROR: Startup
is disabled.
shore
On Mon, May 05, 2014 at 02:31:34PM -0700, Mike Andrewjeski wrote:
> Hi List,
>
> Thanks in advance for reading this, any help is gratefully appreciated.
>
> odd problem, after upgrading to debian wheezy (Shorewall-4.5.5.3) from
> debian squeeze and (Shorewall-4.4.11.6-3+squeeze1)
>
> when doin
>On Mon, May 05, 2014 at 02:31:34PM -0700, Mike Andrewjeski wrote:
>> Hi List,
>>
>> Thanks in advance for reading this, any help is gratefully appreciated.
>>
>> odd problem, after upgrading to debian wheezy (Shorewall-4.5.5.3) from
>> debian squeeze and (Shorewall-4.4.11.6-3+squeeze1)
>>
>> whe
On Mon, May 05, 2014 at 03:44:48PM -0700, Mike Andrewjeski wrote:
> >On Mon, May 05, 2014 at 02:31:34PM -0700, Mike Andrewjeski wrote:
> >
> >What is the output of 'shorewall dump' (run as root, of course).
> attached as shore-dump.gz (hope that's ok..)
>
The dump output shows that Shorewall is ru
On 5/5/2014 3:59 PM, Roberto C. Sánchez wrote:
On Mon, May 05, 2014 at 03:44:48PM -0700, Mike Andrewjeski wrote:
On Mon, May 05, 2014 at 02:31:34PM -0700, Mike Andrewjeski wrote:
What is the output of 'shorewall dump' (run as root, of course).
attached as shore-dump.gz (hope that's ok..)
The
On Mon, May 05, 2014 at 04:06:54PM -0700, Mike Andrewjeski wrote:
>
>the value is: STARTUP_ENABLED=Yes
>BTW, I started by using iptables-restore...
>
I am at a loss. Can you tar up the /etc/shorewall directory and send it
to me directly? I'd like to try and reproduce the behavior you a
On 5/5/2014 4:41 PM, Mike Andrewjeski wrote:
> Thanks Roberto, sorry for this amount of trouble...
>
The contents of these files would also be helpful.\:
/sbin/shorewall
/usr/share/shorewall/shorewallrc
Thanks,
-Tom
--
Tom Eastep\ When I die, I want to go like my Gran
On 5/5/2014 4:55 PM, Tom Eastep wrote:
On 5/5/2014 4:41 PM, Mike Andrewjeski wrote:
Thanks Roberto, sorry for this amount of trouble...
The contents of these files would also be helpful.\:
/sbin/shorewall
/usr/share/shorewall/shorewallrc
Thanks,
-Tom
thanks Tom,
/sbin/shor
On 5/5/2014 4:41 PM, Mike Andrewjeski wrote:
> Thanks Roberto, sorry for this amount of trouble...
>
> attached.
Your /etc/shorewall/zones file is totally invalid:
teastep@gateway:~/shorewall/support/Mike/shorewall$ cat zones
fw firewall
loc ipv4 eth3:0.0.0.0/0
net ipv4 eth2:0.0.0.0/0
teastep@g
14 matches
Mail list logo