Tom If a Shorewall configuration has a zone with type ipsec and a zone with type vserver and the vserver zone does not have the ipsec option specified in the hosts file then "shorewall debug start" produces the following error:
iptables: Invalid argument. Run `dmesg' for more information. ERROR: Command "/usr/local/sbin/iptables -A eth0_in -m policy --dir in --pol none -m policy --dir out --pol none -d 10.0.0.0/24 -j lan2vsr" Failed dmesg produces the following: xt_policy: output policy not valid in PREROUTING and INPUT A copy of the the Shorewall config is attached. Steven.
shorewall.tar.gz
Description: application/tgz
------------------------------------------------------------------------------ This SF.net email is sponsored by Sprint What will you do first with EVO, the first 4G phone? Visit sprint.com/first -- http://p.sf.net/sfu/sprint-com-first
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
