On 12/29/2013 10:08 AM, [email protected] wrote: > that seems to have no problem > > /usr/sbin/shorewall-lite stop > Stopping Shorewall Lite.... > Processing stop user exit ... > Processing tcclear user exit ... > Running /usr/sbin/iptables-restore... > IPv4 Forwarding Enabled > Processing stopped user exit ... > done. > /usr/sbin/shorewall6-lite stop > Stopping Shorewall6 Lite.... > Processing stop user exit ... > Running /usr/sbin/ip6tables-restore... > IPv6 Forwarding Disabled! > Processing stopped user exit ... > done. > /usr/sbin/shorewall-lite start > Starting Shorewall Lite.... > Initializing... > Processing init user exit ... > Processing tcclear user exit ... > Setting up Route Filtering... > Setting up Martian Logging... > Setting up Accept Source Routing... > Setting up Proxy ARP... > Preparing iptables-restore input... > Running /usr/sbin/iptables-restore... > IPv4 Forwarding Enabled > Processing start user exit ... > Processing started user exit ... > done. > /usr/sbin/shorewall6-lite start > Starting Shorewall6 Lite.... > Initializing... > Processing init user exit ... > Setting up Accept Source Routing... > Setting up Proxy NDP... > Setting up Accept Routing Advertisements... > Preparing ip6tables-restore input... > Running /usr/sbin/ip6tables-restore... > IPv6 Forwarding Disabled! > Setting up IPv6 Interface Forwarding... > Processing start user exit ... > Processing started user exit ... > done. > > iptables -L -n | wc > 203 1303 13612 > ip6tables -L -n | wc > 266 1610 18822 > > while still > > systemctl stop shorewall-lite > systemctl stop shorewall6-lite > systemctl start shorewall-lite > systemctl start shorewall6-lite > A dependency job for shorewall6-lite.service failed. See > 'journalctl -xn' for details. > > although, even at this point, > > iptables -L -n | wc > 203 1303 13612 > ip6tables -L -n | wc > 266 1610 18822
Well, I'm no systemd expert, but the fact that /usr/sbin/shorewall6-lite terminated with exit status 0 is entirely normal. So I suspect that you need one or both of the following in your shorewall6-lite.service file: Type=oneshot RemainAfterExit=yes The .service files released from shorewall.org have both of those. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Rapidly troubleshoot problems before they affect your business. Most IT organizations don't have a clear picture of how application performance affects their revenue. With AppDynamics, you get 100% visibility into your Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro! http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
