On 12/3/2015 12:43 PM, Laurie Brown wrote:
> On 03/12/15 18:19, Tom Eastep wrote:
>
> [SNIP]
>
>> Please remove /var/lib/shorewall/eth3.status again then execute the
>> following:
>>
>> sh -x /var/lib/shorewall/firewall enable eth3 > trace 2>&1
>>
>> and send me the 'trace' file.
>>
>> Thanks,
>> -Tom
>
> Hi Tom,
>
> Here you go:
It appears that Shorewall is unable to detect the default gateway out of
eth3 and you haven't installed a findgw script. Without seeing your
providers file and the compiled script, I can't say why you aren't
seeing an error message to that effect. I configured a DHCP-serviced
provider on Ubuntu 14.04 LTS and I received such an error:
ERROR: Unable to detect the gateway through interface eth0: Firewall
state not changed
My providers entry for the interface was:
cable 1 1 - eth0 detect balance
The problem should be cured by creating a findgw script with these contents:
if [ -f /var/lib/dhcp/dhclient.${1}.leases ]; then
grep 'option routers' /var/lib/dhcp/dhclient.${1}.leases | tail -n1
| while read j1 j2 gateway; do echo $gateway | sed 's/;//'; return 0; done
fi
Note that my mailer has folded the second line into three lines.
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
------------------------------------------------------------------------------
Go from Idea to Many App Stores Faster with Intel(R) XDK
Give your users amazing mobile app experiences with Intel(R) XDK.
Use one codebase in this all-in-one HTML5 development environment.
Design, debug & build mobile apps & 2D/3D high-impact games for multiple OSs.
http://pubads.g.doubleclick.net/gampad/clk?id=254741911&iu=/4140
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
