On Wednesday 09 February 2011 00:46:57 Tom Eastep wrote: > On 2/8/11 3:53 PM, Steven Jan Springl wrote: > > It catches all of them except: > > > > ACCOUNT(net2lan,192.168.0.0/24) NFLOG eth0 eth1 > > > > and an additional one: > > > > ACCOUNT(net2lan,192.168.0.0/24) RETURN eth0 eth1 > > Steven, > > Please back out the prior patch and replace it with the attached. > > Thanks! > -Tom
Tom That patch catches them. However the following accounting rule: ACCOUNT(net2lan,192.168.0.0/24) PREROUTING eth0 eth1 produces the following error messages from a 'shorewall start': Use of uninitialized value in concatenation (.) or string at /usr/share/shorewall/Shorewall/Chains.pm line 4366. iptables-restore v1.4.10: Can't set policy `PREROUTING' on `[0:0]' line 21: Bad built-in chain name A 'shorewall debug start' produces these additional error messages: iptables: Bad built-in chain name. ERROR: Command "/usr/local/sbin/iptables :PREROUTING [0:0] " Failed ---------------------------------------------------------------------------------------------------------------- Similarly, the following accounting rule: ACCOUNT(net2lan,192.168.0.0/24) POSTROUTING eth0 eth1 produces the following error messages from a 'shorewall start': Use of uninitialized value in concatenation (.) or string at /usr/share/shorewall/Shorewall/Chains.pm line 4366. iptables-restore v1.4.10: Can't set policy `POSTROUTING' on `[0:0]' line 24: Bad built-in chain name A 'shorewall debug start' produces these additional error messages: iptables: Bad built-in chain name. ERROR: Command "/usr/local/sbin/iptables :POSTROUTING [0:0] " Failed Steven. ------------------------------------------------------------------------------ The ultimate all-in-one performance toolkit: Intel(R) Parallel Studio XE: Pinpoint memory and threading errors before they happen. Find and fix more than 250 security defects in the development cycle. Locate bottlenecks in serial and parallel code that limit performance. http://p.sf.net/sfu/intel-dev2devfeb _______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
