On Fri, 1 Apr 2016 15:03:49 -0700 Tom Eastep <[email protected]> wrote:
> On 04/01/2016 02:05 PM, Steven Jan Springl wrote: > > On Fri, 1 Apr 2016 13:06:06 -0700 > > Tom Eastep <[email protected]> wrote: > > > >> > >> > >> 1) If a physical interface name was used in the INTERFACE column > >> of an entry in /etc/shorewall/masq, then previously a Perl > >> diagnostic was issued as the masq rule was being processed and the > >> iptables rule and its containing chain were dropped by the > >> optimizer. That has been corrected so that physical interface > >> names are handled correctly. > >> > >> Similar issues with physical names in the INTERFACE column of > >> the nat and netmap files have also been resolved. > > > > A similar problem occurs if you specify a physical interface in the > > ecn file. > > > > The attached patch seems to resolve the issue. > > Thanks Steven, > -Tom Tom Confirmed, the patch fixes the issue. ------------------------------------------------------ There are a few more issues with physical interfaces. blrules entry: blacklog lan:ð20 all udp 90 Produces the following messages: Use of uninitialized value $var in hash element at /usr/share/shorewall/Shorewall/Zones.pm line 995, <$currentfile> line 251. Use of uninitialized value $var in substitution (s///) at /usr/share/shorewall/Shorewall/Zones.pm line 1007, <$currentfile> line 251. Use of uninitialized value in transliteration (tr///) at /usr/share/shorewall/Shorewall/Zones.pm line 1008, <$currentfile> line 251. Use of uninitialized value $var in string eq at /usr/share/shorewall/Shorewall/Zones.pm line 1010, <$currentfile> line 251. Use of uninitialized value $var in substitution (s///) at /usr/share/shorewall/Shorewall/Zones.pm line 1014, <$currentfile> line 251. Use of uninitialized value $var in pattern match (m//) at /usr/share/shorewall/Shorewall/Zones.pm line 1018, <$currentfile> line 251. Use of uninitialized value $var in join or string at /usr/share/shorewall/Shorewall/Zones.pm line 1022, <$currentfile> line 251. Use of uninitialized value $key in hash element at /usr/share/shorewall/Shorewall/Zones.pm line 1036, <$currentfile> line 251. Use of uninitialized value $interface in concatenation (.) or string at /usr/share/shorewall/Shorewall/Chains.pm line 6765, <$currentfile> line 251. Use of uninitialized value $interface in hash element at /usr/share/shorewall/Shorewall/Chains.pm line 6765, <$currentfile> line 251. Use of uninitialized value $var in hash element at /usr/share/shorewall/Shorewall/Zones.pm line 995, <$currentfile> line 251. --------------------------------------------------------------------------------------- conntrack entry: DROP all eth20 Produces the following messages: Use of uninitialized value $var in hash element at /usr/share/shorewall/Shorewall/Zones.pm line 995, <$currentfile> line 74. Use of uninitialized value $var in substitution (s///) at /usr/share/shorewall/Shorewall/Zones.pm line 1007, <$currentfile> line 74. Use of uninitialized value in transliteration (tr///) at /usr/share/shorewall/Shorewall/Zones.pm line 1008, <$currentfile> line 74. Use of uninitialized value $var in string eq at /usr/share/shorewall/Shorewall/Zones.pm line 1010, <$currentfile> line 74. Use of uninitialized value $var in substitution (s///) at /usr/share/shorewall/Shorewall/Zones.pm line 1014, <$currentfile> line 74. Use of uninitialized value $var in pattern match (m//) at /usr/share/shorewall/Shorewall/Zones.pm line 1018, <$currentfile> line 74. Use of uninitialized value $var in join or string at /usr/share/shorewall/Shorewall/Zones.pm line 1022, <$currentfile> line 74. Use of uninitialized value $key in hash element at /usr/share/shorewall/Shorewall/Zones.pm line 1036, <$currentfile> line 74. Use of uninitialized value $interface in concatenation (.) or string at /usr/share/shorewall/Shorewall/Chains.pm line 6897, <$currentfile> line 74. Use of uninitialized value $interface in concatenation (.) or string at /usr/share/shorewall/Shorewall/Chains.pm line 6897, <$currentfile> line 74. Use of uninitialized value $interface in hash element at /usr/share/shorewall/Shorewall/Chains.pm line 6897, <$currentfile> line 74. Use of uninitialized value $interface in string eq at /usr/share/shorewall/Shorewall/Chains.pm line 5576, <$currentfile> line 74. Use of uninitialized value $interface in concatenation (.) or string at /usr/share/shorewall/Shorewall/Chains.pm line 5594, <$currentfile> line 74. Use of uninitialized value $var in hash element at /usr/share/shorewall/Shorewall/Zones.pm line 995, <$currentfile> line 74. Use of uninitialized value $interface in string eq at /usr/share/shorewall/Shorewall/Chains.pm line 5576, <$currentfile> line 40. Use of uninitialized value $interface in concatenation (.) or string at /usr/share/shorewall/Shorewall/Chains.pm line 5594, <$currentfile> line 40. Use of uninitialized value $interface in string eq at /usr/share/shorewall/Shorewall/Chains.pm line 5539, <$currentfile> line 43. Use of uninitialized value $interface in concatenation (.) or string at /usr/share/shorewall/Shorewall/Chains.pm line 5548, <$currentfile> line 43. Use of uninitialized value $interface in string eq at /usr/share/shorewall/Shorewall/Chains.pm line 5539, <$currentfile> line 37. Use of uninitialized value $interface in concatenation (.) or string at /usr/share/shorewall/Shorewall/Chains.pm line 5548, <$currentfile> line 37. ----------------------------------------------------------------------------------------- proxyarp entry: 99.88.77.33 ssp1 eth20 yes yes Produces the following messages: Use of uninitialized value $extphy in concatenation (.) or string at /usr/share/shorewall/Shorewall/Proxyarp.pm line 98, <$currentfile> line 11. Use of uninitialized value $extphy in concatenation (.) or string at /usr/share/shorewall/Shorewall/Proxyarp.pm line 98, <$currentfile> line 11. Use of uninitialized value $physical in concatenation (.) or string at /usr/share/shorewall/Shorewall/Proxyarp.pm line 160. Use of uninitialized value $physical in concatenation (.) or string at /usr/share/shorewall/Shorewall/Proxyarp.pm line 160. Use of uninitialized value in string eq at /usr/share/shorewall/Shorewall/Providers.pm line 468, <$currentfile> line 14. Use of uninitialized value $_[0] in hash element at /usr/share/shorewall/Shorewall/Zones.pm line 1661, <$currentfile> line 14. Use of uninitialized value $var in hash element at /usr/share/shorewall/Shorewall/Zones.pm line 995, <$currentfile> line 14. Use of uninitialized value $var in substitution (s///) at /usr/share/shorewall/Shorewall/Zones.pm line 1007, <$currentfile> line 14. Use of uninitialized value in transliteration (tr///) at /usr/share/shorewall/Shorewall/Zones.pm line 1008, <$currentfile> line 14. Use of uninitialized value $var in string eq at /usr/share/shorewall/Shorewall/Zones.pm line 1010, <$currentfile> line 14. Use of uninitialized value $var in substitution (s///) at /usr/share/shorewall/Shorewall/Zones.pm line 1014, <$currentfile> line 14. Use of uninitialized value $var in pattern match (m//) at /usr/share/shorewall/Shorewall/Zones.pm line 1018, <$currentfile> line 14. Use of uninitialized value $var in join or string at /usr/share/shorewall/Shorewall/Zones.pm line 1022, <$currentfile> line 14. Use of uninitialized value $key in hash element at /usr/share/shorewall/Shorewall/Zones.pm line 1036, <$currentfile> line 14. Use of uninitialized value $_[0] in hash element at /usr/share/shorewall/Shorewall/Zones.pm line 1721, <$currentfile> line 14. Use of uninitialized value $interface in concatenation (.) or string at /usr/share/shorewall/Shorewall/Chains.pm line 6838, <$currentfile> line 14. Use of uninitialized value $interface in concatenation (.) or string at /usr/share/shorewall/Shorewall/Chains.pm line 6838, <$currentfile> line 14. Use of uninitialized value $interface in hash element at /usr/share/shorewall/Shorewall/Chains.pm line 6838, <$currentfile> line 14. Use of uninitialized value $_[0] in hash element at /usr/share/shorewall/Shorewall/Zones.pm line 1721, <$currentfile> line 14. Use of uninitialized value $interface in hash element at /usr/share/shorewall/Shorewall/Zones.pm line 1550, <$currentfile> line 14. ----------------------------------------------------------------------------------------- route_rules entry: ð20 2.2.2.2 isp1 1 7/6 Produces the following messages: Use of uninitialized value $var in hash element at /usr/share/shorewall/Shorewall/Zones.pm line 995, <$currentfile> line 10. Use of uninitialized value $var in substitution (s///) at /usr/share/shorewall/Shorewall/Zones.pm line 1007, <$currentfile> line 10. Use of uninitialized value in transliteration (tr///) at /usr/share/shorewall/Shorewall/Zones.pm line 1008, <$currentfile> line 10. Use of uninitialized value $var in string eq at /usr/share/shorewall/Shorewall/Zones.pm line 1010, <$currentfile> line 10. Use of uninitialized value $var in substitution (s///) at /usr/share/shorewall/Shorewall/Zones.pm line 1014, <$currentfile> line 10. Use of uninitialized value $var in pattern match (m//) at /usr/share/shorewall/Shorewall/Zones.pm line 1018, <$currentfile> line 10. Use of uninitialized value $var in join or string at /usr/share/shorewall/Shorewall/Zones.pm line 1022, <$currentfile> line 10. Use of uninitialized value $key in hash element at /usr/share/shorewall/Shorewall/Zones.pm line 1036, <$currentfile> line 10. Use of uninitialized value $interface in concatenation (.) or string at /usr/share/shorewall/Shorewall/Chains.pm line 6765, <$currentfile> line 10. Use of uninitialized value $interface in hash element at /usr/share/shorewall/Shorewall/Chains.pm line 6765, <$currentfile> line 10. ----------------------------------------------------------------------------------------- When secmarks contains: RESTORE P:NU - eth20 tcp 53 = And ecn contains: eth20 9.5.7.3 The following error messages are produced: Checking /etc/shorewall200/ecn... Use of uninitialized value $interface in hash element at /usr/share/shorewall/Shorewall/Misc.pm line 119, <$currentfile> line 17. Use of uninitialized value in concatenation (.) or string at /usr/share/shorewall/Shorewall/Chains.pm line 2309. Use of uninitialized value $interface in string eq at /usr/share/shorewall/Shorewall/Chains.pm line 5602. ERROR: Internal error in Shorewall::Chains::push_matches at /usr/share/shorewall/Shorewall/Chains.pm line 1496 at /usr/share/shorewall/Shorewall/Config.pm line 1404. Shorewall::Config::fatal_error("Internal error in Shorewall::Chains::push_matches at /usr/sha"...) called at /usr/share/shorewall/Shorewall/Config.pm line 1444 Shorewall::Config::assert("") called at /usr/share/shorewall/Shorewall/Chains.pm line 1496 Shorewall::Chains::push_matches(HASH(0xacc907c), "p", "tcp", "o", undef) called at /usr/share/shorewall/Shorewall/Chains.pm line 1554 Shorewall::Chains::create_irule(HASH(0xaa75cfc), "j", "_ecn", "p", "tcp", "o", undef) called at /usr/share/shorewall/Shorewall/Chains.pm line 2482 Shorewall::Chains::add_ijump_internal(HASH(0xaa75cfc), "j", HASH(0xacc8bf4), 0, "/etc/shorewall200/ecn:17", "p", "tcp", "o", undef, ...) called at /usr/share/shorewall/Shorewall/Chains.pm line 2503 Shorewall::Chains::add_ijump_extended(HASH(0xaa75cfc), "j", HASH(0xacc8bf4), "/etc/shorewall200/ecn:17", "p", "tcp", "o", undef) called at /usr/share/shorewall/Shorewall/Misc.pm line 137 Shorewall::Misc::setup_ecn() called at /usr/share/shorewall/Shorewall/Compiler.pm line 828 Shorewall::Compiler::compiler("script", "", "directory", "/etc/shorewall200", "verbosity", 1, "timestamp", 0, "debug", ...) called at /usr/share/shorewall/compiler.pl line 145 --------------------------------------------------------------------------------------- Steven. ------------------------------------------------------------------------------ Transform Data into Opportunity. Accelerate data analysis in your applications with Intel Data Analytics Acceleration Library. Click to learn more. http://pubads.g.doubleclick.net/gampad/clk?id=278785471&iu=/4140 _______________________________________________ Shorewall-devel mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-devel
