Hi Øyvind, Thanks for your feedback on the packages.
On Tue, Nov 21, 2017 at 11:46:58AM +0100, Øyvind Lode wrote: > I recently installed debian stretch on my router/firewall (fresh > install including reformat). > In jessie I simply had to set startup=1 in /etc/default/shorewall to > have shorewall start my firewall at boot. > In stretch setting startup=1 was not enough. > I also had to manually enable shorewall init script with systemctl > enable shorewall. By default, the shorewall* packages install with no configuration, so the administrator must enable shorewall after it has been configured. In the past, with SysV init and other init systems that had scripts in /etc/init.d, this could be controlled by the "startup" variable in /etc/default/shorewall, for example. This has been documented in /usr/share/doc/shorewall/README.Debian.gz forever (or at least as far back as I can remember). However, with systemd things work a little differently. With the packaging of 5.0.4, the packaging started including the systemd unit file. However, as with the old init script, it is still necessary for the administrator to enable shorewall after configuring it. > I even had to replace allow-hotplug with auto on all nics in > /etc/network/interfaces to have shorewall startup at boot. This is strange. I have not encountered this. Can you describe more details of your configuration so that I can understand this? > All is working as expected now but I did not find any of these > requirements documented either in shorewall docs or in debian specific > changes/docs. > > I'm a very happy shorewall and debian user. > Thanks for packaging the best firewall on the best linux distro :) > I don't much regarding Shorewall, but I am glad you and others benefit from it. And of course Debian is the best Linux distro :) Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com ------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
