Hi,
I have installed shorewall6 package, but when i start the shorewall6 , its
giving me below error:
~# /*sbin/shorewall6 -vv start*
Compiling using Shorewall 5.2.0.4...
Unescaped left brace in regex is deprecated here (and will be fatal in Perl
5.32), passed through in regex; marked by <-- HERE in m/ ^(.*?) \$({ <--
HERE )? (\d+|[a-zA-Z_]\w*) (?(2)}) (.*)$ / at
/usr/share/shorewall/Shorewall/Config.pm line 2836.
Unescaped left brace in regex is deprecated here (and will be fatal in Perl
5.32), passed through in regex; marked by <-- HERE in m/ ^(.*?) \@({ <--
HERE )? (\d+|[a-zA-Z]\w*) (?(2)}) (.*)$ / at
/usr/share/shorewall/Shorewall/Config.pm line 2853.
Unescaped left brace in regex is deprecated here (and will be fatal in Perl
5.32), passed through in regex; marked by <-- HERE in m/ ^(.*?) __({ <--
HERE )? (\w+) (?(2)}) (.*)$ / at /usr/share/shorewall/Shorewall/Config.pm
line 2864.
Unescaped left brace in regex is deprecated here (and will be fatal in Perl
5.32), passed through in regex; marked by <-- HERE in m/ ^(.*?) \$({ <--
HERE )? (\d+|[a-zA-Z_]\w*) (?(2)}) (.*)$ / at
/usr/share/shorewall/Shorewall/Config.pm line 3794.
Unescaped left brace in regex is deprecated here (and will be fatal in Perl
5.32), passed through in regex; marked by <-- HERE in m/ ^(.*?) \@({ <--
HERE )? (\d+|[a-zA-Z_]\w*) (?(2)}) (.*)$ / at
/usr/share/shorewall/Shorewall/Config.pm line 3833.
Unescaped left brace in regex is deprecated here (and will be fatal in Perl
5.32), passed through in regex; marked by <-- HERE in m/ ^(.*?) \$({ <--
HERE )? (\d+|[a-zA-Z]\w*) (?(2)}) (.*)$ / at
/usr/share/shorewall/Shorewall/Config.pm line 3849.
Unescaped left brace in regex is deprecated here (and will be fatal in Perl
5.32), passed through in regex; marked by <-- HERE in m/ ^(.*?) @({ <--
HERE )?(?:0|chain)(?(2)}) (.*)$ / at
/usr/share/shorewall/Shorewall/Chains.pm line 5822.
Processing /etc/shorewall6/params ...
Processing /etc/shorewall6/shorewall6.conf...
Loading Modules...
Compiling /etc/shorewall6/zones...
Compiling /etc/shorewall6/interfaces...
Interface "lan eth2 detect" Validated
Interface "lan eth0 detect" Validated
Interface "lan eth4 detect" Validated
Interface "lan eth1 detect" Validated
Interface "lan eth3 detect" Validated
Interface "lan dummy0 detect" Validated
Interface "lan v-eth3-p detect" Validated
Compiling /etc/shorewall6/hosts...
Host "vpn eth2:[::/0]" validated
Host "vpn eth1:[::/0]" validated
Determining Hosts in Zones...
fw (firewall)
lan (ipv6)
dummy0:[::/0]
eth2:[::/0]
eth4:[::/0]
v-eth3-p:[::/0]
eth0:[::/0]
eth3:[::/0]
eth1:[::/0]
vpn (ipsec4)
eth1:[::/0]
eth2:[::/0]
inet6 (ipv6)
WARNING: *** inet6 is an EMPTY ZONE *** /etc/shorewall6/hosts (EOF)
Locating Action Files...
Compiling /etc/shorewall6/policy...
Policy for lan to fw is ACCEPT using chain lan-all
Policy for lan to vpn is ACCEPT using chain lan-all
Policy for lan to inet6 is ACCEPT using chain lan-all
Policy for fw to lan is ACCEPT using chain fw-all
Policy for fw to vpn is ACCEPT using chain fw-all
Policy for fw to inet6 is ACCEPT using chain fw-all
Policy for vpn to lan is ACCEPT using chain vpn-lan
Policy for vpn to fw is ACCEPT using chain vpn-fw
Policy for inet6 to fw is DROP using chain inet6-fw
Policy for inet6 to lan is ACCEPT using chain inet6-lan
Policy for fw to lan is ACCEPT using chain all-all
Policy for fw to vpn is ACCEPT using chain all-all
Policy for fw to inet6 is ACCEPT using chain all-all
Policy for lan to fw is ACCEPT using chain all-all
Policy for lan to vpn is ACCEPT using chain all-all
Policy for lan to inet6 is ACCEPT using chain all-all
Policy for vpn to fw is ACCEPT using chain all-all
Policy for vpn to lan is ACCEPT using chain all-all
Policy for vpn to inet6 is ACCEPT using chain all-all
Policy for inet6 to fw is ACCEPT using chain all-all
Policy for inet6 to lan is ACCEPT using chain all-all
Policy for inet6 to vpn is ACCEPT using chain all-all
Compiling TCP Flags filtering...
Compiling MAC Filtration -- Phase 1...
Chain eth2_iop deleted
Chain eth2_fop deleted
Chain eth0_iop deleted
Chain eth0_fop deleted
Chain eth4_iop deleted
Chain eth4_fop deleted
Chain eth1_iop deleted
Chain eth1_fop deleted
Chain eth3_iop deleted
Chain eth3_fop deleted
Chain dummy0_iop deleted
Chain dummy0_fop deleted
Chain v-eth3-p_iop deleted
Chain v-eth3-p_fop deleted
Compiling /etc/shorewall6/rules...
Rule "ACCEPT inet6 fw esp" Compiled
Rule "ACCEPT inet6 fw udp 500,4500,4501" Compiled
Rule "ACCEPT inet6 fw vrrp" Compiled
Rule "ACCEPT inet6 fw - - - - - - 87" Compiled
Compiling /etc/shorewall6/conntrack...
Conntrack rule "CT:helper:amanda:PO - - udp 10080" Compiled
Conntrack rule "CT:helper:amanda:PO - - udp 10080" Compiled
Conntrack rule "CT:helper:ftp:PO - - tcp 21" Compiled
Conntrack rule "CT:helper:ftp:PO - - tcp 21" Compiled
Conntrack rule "CT:helper:RAS:PO - - udp 1719" Compiled
Conntrack rule "CT:helper:RAS:PO - - udp 1719" Compiled
Conntrack rule "CT:helper:Q.931:PO - - tcp 1720" Compiled
Conntrack rule "CT:helper:Q.931:PO - - tcp 1720" Compiled
Conntrack rule "CT:helper:sane:PO - - tcp 6566" Compiled
Conntrack rule "CT:helper:sane:PO - - tcp 6566" Compiled
Conntrack rule "CT:helper:sip:PO - - udp 5060" Compiled
Conntrack rule "CT:helper:sip:PO - - udp 5060" Compiled
Conntrack rule "CT:helper:tftp:PO - - udp 69" Compiled
Conntrack rule "CT:helper:tftp:PO - - udp 69" Compiled
Compiling MAC Filtration -- Phase 2...
Applying Policies...
Compiling /usr/share/shorewall/action.AllowICMPs for chain AllowICMPs...
Compiling /usr/share/shorewall/action.Broadcast for chain Broadcast...
Compiling /usr/share/shorewall/action.Multicast for chain Multicast...
Policy DROP from inet6 to fw using chain inet6-fw
Generating Rule Matrix...
Handling complex zones...
Entering main matrix-generation loop...
Finishing matrix...
Chain AllowICMPs deleted
Chain Broadcast deleted
Chain Multicast deleted
Chain inet6-fw deleted
Chain inet6_frwd deleted
Optimizing Ruleset...
Table raw pass 1, 2 referenced chains, level 4a...
Table raw pass 2, 2 referenced chains, level 4b...
Table raw pass 2, 2 referenced user chains, level 16...
Table raw pass , 0 referenced user chains, level 8...
Table raw Optimized -- Passes = 1
Table mangle pass 1, 10 referenced chains, level 4a...
Chain tcin deleted
Chain tcout deleted
Chain tcpost deleted
Chain tcpre deleted
Empty chain tcfor deleted
Table mangle pass 2, 5 referenced chains, level 4a...
Table mangle pass 3, 5 referenced chains, level 4b...
Table mangle pass 3, 5 referenced user chains, level 16...
Table mangle pass , 0 referenced user chains, level 8...
Table mangle Optimized -- Passes = 1
Table filter pass 1, 33 referenced chains, level 4a...
1 ACCEPT rules deleted from chain INPUT
1 ACCEPT rules deleted from chain OUTPUT
1 references to chain dummy0_out replaced
Chain dummy0_out deleted
1 references to chain eth0_out replaced
Chain eth0_out deleted
1 references to chain eth3_out replaced
Chain eth3_out deleted
1 references to chain eth4_out replaced
Chain eth4_out deleted
1 references to chain v-eth3-p_out replaced
Chain v-eth3-p_out deleted
Table filter pass 2, 28 referenced chains, level 4a...
Table filter pass 3, 28 referenced chains, level 4a...
Table filter pass 4, 28 referenced chains, level 4b...
Table filter pass 5, 8 short chains, level 4c...
Table filter pass 5, 28 referenced user chains, level 16...
Table filter pass , 25 referenced user chains, level 8...
Chain eth0_in combined with v-eth3-p_in
1 references to chain eth0_in replaced
Chain eth0_in deleted
Chain eth3_in combined with v-eth3-p_in
1 references to chain eth3_in replaced
Chain eth3_in deleted
Chain eth4_in combined with v-eth3-p_in
1 references to chain eth4_in replaced
Chain eth4_in deleted
Chain dummy0_in combined with v-eth3-p_in
1 references to chain dummy0_in replaced
Chain dummy0_in deleted
Chain lan_frwd combined with vpn_frwd
7 references to chain lan_frwd replaced
Chain lan_frwd deleted
Chain eth3_in combined with eth0_in
Chain eth3_in deleted
Chain eth4_in combined with eth0_in
Chain eth4_in deleted
Chain dummy0_in combined with eth0_in
Chain dummy0_in deleted
Chain eth2_in combined with eth1_in
1 references to chain eth2_in replaced
Chain eth2_in deleted
Chain eth2_out combined with eth1_out
1 references to chain eth2_out replaced
Chain eth2_out deleted
Chain eth4_in combined with eth3_in
Chain eth4_in deleted
Chain dummy0_in combined with eth3_in
Chain dummy0_in deleted
Chain dummy0_in combined with eth4_in
Chain dummy0_in deleted
Chain eth4_in renamed to ~comb0
Chain eth1_out renamed to ~comb1
Chain eth1_in renamed to ~comb2
Chain v-eth3-p_in renamed to ~comb3
Chain eth3_in renamed to ~comb4
Chain vpn_frwd renamed to ~comb5
Chain eth0_in renamed to ~comb6
Table filter pass 1, 18 referenced user chains, level 8...
Table filter pass 2, 21 referenced user chains, level 16...
Table filter Optimized -- Passes =
Creating ip6tables-restore input...
Shorewall configuration compiled to /var/lib/shorewall6/.start
Configuration uses these capabilities ('*' denotes required):
AMANDA_HELPER*
COMMENTS
CONNTRACK_MATCH
CT_TARGET*
EXMARK
FTP_HELPER*
FWMARK_RT_MASK
GOTO_TARGET
H323_HELPER*
IPTABLES_S
LOG_TARGET*
MANGLE_ENABLED
MANGLE_FORWARD
MARK
MULTIPORT*
NEW_CONNTRACK_MATCH
POLICY_MATCH*
RAW_TABLE
RESTORE_WAIT_OPTION
SANE_HELPER*
SIP_HELPER*
TFTP_HELPER*
WAIT_OPTION
XMULTIPORT*
Starting Shorewall6....
Initializing...
Processing /etc/shorewall6/init ...
Setting up Proxy NDP...
Disabling Kernel Automatic Helper Association
Preparing ip6tables-restore input...
Running /usr/sbin/ip6tables-restore --wait 60...
*ip6tables-restore v1.8.3 (legacy): unknown option "--reject-with"Error
occurred at line: 110Try `ip6tables-restore -h' or 'ip6tables-restore
--help' for more information. ERROR: iptables-restore Failed. Input is in*
/var/lib/shorewall6/.ip6tables-restore-input
Processing /etc/shorewall6/stop ...
Preparing ip6tables-restore input...
Running /usr/sbin/ip6tables-restore --wait 60...
Processing /etc/shorewall6/stopped ...
Terminated
Any help will be helpful.
Thanks,
Nag
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
