On 5/29/11 5:46 PM, Steven Jan Springl wrote: > In Shorewall6 if maclist is specified on an interface, the following messages > are produced: > > Use of uninitialized value $to in hash element > at /usr/share/shorewall/Shorewall/Chains.pm line 1310. > > Use of uninitialized value $to in pattern match (m//) > at /usr/share/shorewall/Shorewall/Chains.pm line 1310. > > ERROR: Internal error in Shorewall::Chains::find_chain > at /usr/share/shorewall/Shorewall/Chains.pm line 1273 > > I have attached a minimal config. with an example.
Steven, This is a defect introduced since 4.4.19 and is not limited to IPv6. It occurs when MACLIST_DISPOSITION is not specified. Patch attached. Thanks, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
diff --git a/Shorewall/Perl/Shorewall/Config.pm
b/Shorewall/Perl/Shorewall/Config.pm
index 1285abf..f2ef1bd 100644
--- a/Shorewall/Perl/Shorewall/Config.pm
+++ b/Shorewall/Perl/Shorewall/Config.pm
@@ -3403,7 +3403,7 @@ sub get_configuration( $ ) {
require_capability 'AUDIT_TARGET' , "MACLIST_DISPOSITION=$val", 's' if
$val =~ /^A_/;
} else {
- $config{MACLIST_DISPOSITION} = 'reject';
+ $globals{MACLIST_TARGET} = 'reject';
}
if ( $val = $config{MACLIST_TABLE} ) {
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ vRanger cuts backup time in half-while increasing security. With the market-leading solution for virtual backup and recovery, you get blazing-fast, flexible, and affordable data protection. Download your free trial now. http://p.sf.net/sfu/quest-d2dcopy1
_______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
