Working on a multiISP install of
shorewall version
4.6.2.3
Configs include
/zones
fw firewall
net ipv4
prov2 ipv4
lan ipv4
lan2 ipv4
lan3 ipv4
/hosts
lan INTIF:10.1.20.0/24
lan2 INTIF:10.2.20.0/24
lan3 INTIF:10.3.20.0/24
/providers
prov1 1 1 main EXT_IF detect track,balance
INTIF
prov2 2 2 main tun1 192.168.1.1 track,fallback
INTIF
If
/interfaces
?FORMAT 2
net EXTIF physical=eth0
- INTIF physical=eth1
prov2 tun0 optional
Compile, install & function are all ok.
If, instead
/interfaces
?FORMAT 2
net EXTIF physical=eth0
- INTIF physical=eth1
- prov2 tun1 optional
+ prov2 VPNIF physical=tun1,optional
Compile fails
Compiling /opt/etc/shorewall/providers...
Use of uninitialized value $physical in pattern match (m//) at
/usr/lib/perl5/vendor_perl/5.18.1/Shorewall/Providers.pm line 463,
<$currentfile> line 2.
ERROR: A provider interface must have at least one associated zone
/opt/etc/shorewall/providers (line 2)
(1) Is the form
prov2 VPNIF physical=tun1,optional
in /interfaces permitted?
(2) If "yes", is the ERROR a config problem on my end, or a bug?
------------------------------------------------------------------------------
Want fast and easy access to all the code in your enterprise? Index and
search up to 200,000 lines of code with a free copy of Black Duck
Code Sight - the same software that powers the world's largest code
search on Ohloh, the Black Duck Open Hub! Try it now.
http://p.sf.net/sfu/bds
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
