On Monday 30 May 2011 17:47:34 Tom Eastep wrote: > On 5/30/11 9:20 AM, Tom Eastep wrote: > > On May 30, 2011, at 9:08 AM, Steven Jan Springl <[email protected]> wrote: > >> On Sunday 29 May 2011 15:32:53 Steven Jan Springl wrote: > >>> Using kernel 2.6.39, iptables 1.4.11 and xtables-addons 1.35 > >>> > >>> If the config. does not have a capabilities file, the following policy > >>> works: > >>> > >>> all all DROP:audit warn > >>> > >>> If a capabilities file is created, the following error message is > >>> produced: > >>> > >>> ERROR: :audit requires AUDIT Target in your kernel and > >>> iptables : /etc/shorewallBBB/policy (line 13) > >>> > >>> A copy of the capabilities file is attached. > >>> > >>> I have manually entered the following iptables rule to confirm that the > >>> audit feature is working: > >>> > >>> iptables -A INPUT -j AUDIT --type drop > >> > >> Have you had an opportunity to look at the above problem yet? > > The attached patch corrects the problem. You will need to recreate the > capabilities file after applying the patch. > > -Tom
Tom Confirmed, the patch has fixed the problem. Thanks. Steven. ------------------------------------------------------------------------------ vRanger cuts backup time in half-while increasing security. With the market-leading solution for virtual backup and recovery, you get blazing-fast, flexible, and affordable data protection. Download your free trial now. http://p.sf.net/sfu/quest-d2dcopy1 _______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
