Brian J. Murrell wrote:
> ~sigh~ Third message in a row. Every time I think I've said everything
> I need/want to say...
>
> Some more digging and it seems that maybe (or maybe not) my memory on
> shorewall[-lite] restore in the start action of an initscript is faulty.
>
> In any case, even "shorewall-lite start -f" ends up being a glorified
> "shorewall-lite restore" with all of the problems I listed previously.
>
> I should add here, that I don't have "make" installed on my
> shorewall-lite system so start_command() is not taking the "make -qf
> ${CONFDIR}/Makefile; do_it()" route but rather the "shoreall-lite
> restore-ipsets; shorewall-lite restore" path.
>
> Now I think I am done until somebody wants to comment on "shorewall-lite
> restore" and it's applicability in starting shorewall on a system "from
> fresh" (i.e. boot).I can add an option to shorewall.conf that causes the started script to run during restore. There is no place to run the 'start' script during restore because iptables-restore creates the 'shorewall' chain whose presence indicates that Shorewall is in the running state. Alternatively, I can create a 'restored' script. Probably safer... -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Create and Deploy Rich Internet Apps outside the browser with Adobe(R)AIR(TM) software. With Adobe AIR, Ajax developers can use existing skills and code to build responsive, highly engaging applications that combine the power of local resources and data with the reach of the web. Download the Adobe AIR SDK and Ajax docs to start building applications today-http://p.sf.net/sfu/adobe-com
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
