On 9/11/10 9:40 AM, Steven Jan Springl wrote: > After applying the fix, the following messages are produced (this is with > OPTIMIZE=15): > > iptables v1.4.9.1: Couldn't load target > `sticky':/usr/local/libexec/xtables/libipt_sticky.so: cannot open shared > object file: No such file or directory > > ERROR: Command "/usr/local/sbin/iptables -A tcpre -s 192.168.120.0/24 -d > 0.0.0.0 -j sticky" Failed > > -------------------------------------------------------------------------------------------------------------------- > > With OPTIMIZE=0 the following messages are produced: > > iptables: Chain already exists. > ERROR: Command "/usr/local/sbin/iptables :sticky - [0:0]" Failed
Before sending me the config, please try the attached patch. Thanks, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
diff --git a/Shorewall/Perl/Shorewall/Tc.pm b/Shorewall/Perl/Shorewall/Tc.pm
index 4a49f2f..5c479f6 100644
--- a/Shorewall/Perl/Shorewall/Tc.pm
+++ b/Shorewall/Perl/Shorewall/Tc.pm
@@ -294,7 +294,11 @@ sub process_tc_rule( ) {
fatal_error "SAME rules are only allowed in the
PREROUTING and OUTPUT chains" if $chain ne 'tcpre';
}
- ensure_mangle_chain($target);
+ my $chain1 = $target;
+
+ $chain1 =~ s/ +$//;
+
+ ensure_mangle_chain($chain1);
$sticky++;
} elsif ( $target eq 'IPMARK ' ) {
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Start uncovering the many advantages of virtual appliances and start using them to simplify application deployment and accelerate your shift to cloud computing http://p.sf.net/sfu/novell-sfdev2dev
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
