I've set up a VMware image with Ubuntu 10.04 Server x64 to test out shorewall-init. It has a single NIC with 2 VLANs. Both VLANs are optional in /etc/shorewall/interfaces, eth0 isn't configured. The idea is that if any interface on the firewall is working then I'd like it to bring up everything it can so that I can get in and fix whatever might not come up.
The docs suggested I could leave startup=0 in /etc/default/shorewall, but when I do the firewall does not start on a reboot of the server. If I ifdown/ifup one of the VLANs then the firewall starts as expected. There are some workarounds that do make the firewall start on a reboot: Setting startup=1 in /etc/default/shorewall Setting REQUIRE_INTERFACE=Yes (this one seems appropriate for my situation) Setting either of the interfaces to required instead of optional Dump attached if you need it Brad C
dump.txt.gz
Description: GNU Zip compressed data
------------------------------------------------------------------------------ This SF.net email is sponsored by Sprint What will you do first with EVO, the first 4G phone? Visit sprint.com/first -- http://p.sf.net/sfu/sprint-com-first
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
