| View previous topic :: View next topic |
| Author |
Message |
mikehild
n00b
Joined: 21 Feb 2004
Posts: 33
Location: Canada
|
 Posted: Mon Apr 26, 2004 3:42 am Post subject: Upgrade kernel, and Shorewall doesn't work |
 |
|
I've used kernel-2.4.20-genroo-r5,r6, and r9 with no problems. But, when I try to upgrade to kernel-2.4.25-gentoo, 2.6.5-gentoo, or 2-6-5-gentoo-r1, I encounter the following problem when running Shorewall:
| Code: | Loading /usr/share/shorewall/functions...
Processing /etc/shorewall/params ...
Processing /etc/shorewall/shorewall.conf...
Starting Shorewall...
Loading Modules...
Initializing...
Shorewall has detected the following iptables/netfilter capabilities:
NAT: Available
Packet Mangling: Available
Multi-port Match: Available
Connection Tracking Match: Not available
Determining Zones...
Zones: net masq
Validating interfaces file...
Validating hosts file...
Validating Policy file...
Determining Hosts in Zones...
Net Zone: eth1:0.0.0.0/0
Masquerade Zone: eth0:0.0.0.0/0
Processing /etc/shorewall/init ...
Deleting user chains...
Setting up Accounting...
Setting up User Sets...
Restoring dynamic rules...
Creating Interface Chains...
Configuring Proxy ARP
Setting up NAT...
Adding Common Rules
IP Forwarding Enabled
Processing /etc/shorewall/tunnels...
Processing Actions...
Processing /etc/shorewall/rules...
Rule "ACCEPT net fw tcp 80,443,22,20,21,25,6881,6882,6883,6884 -" added.
Rule "ACCEPT masq fw tcp 80,443,22,20,21,25,6881,6882,6883,6884 -" added.
Rule "ACCEPT masq fw tcp domain,bootps,http,https,631,imaps,imap2,imap3,pop3,
smtp,nntp,ntp -" added.
Rule "ACCEPT masq fw udp domain,bootps,http,https,631,imaps,imap2,imap3,pop3,
smtp,nntp,ntp,6881 -" added.
Rule "ACCEPT fw masq tcp 631,515,137,138,139 -" added.
Rule "ACCEPT fw masq udp 631,515,137,138,139 -" added.
Rule "ACCEPT net masq tcp 6881" added.
Processing /etc/shorewall/policy...
Policy ACCEPT for fw to net using chain fw2net
Policy ACCEPT for fw to masq using chain fw2masq
Policy DROP for net to fw using chain net2all
Policy DROP for net to masq using chain net2all
Policy ACCEPT for masq to fw using chain masq2fw
Policy ACCEPT for masq to net using chain masq2net
Masqueraded Subnets and Hosts:
iptables: Invalid argument
Processing /etc/shorewall/stop ...
IP Forwarding Enabled
Processing /etc/shorewall/stopped ...
|
The only thing I can think of is that there's some hidden option in the kernel configs that I stumbled across with 2.4.20, but can't find anymore... Maybe I should just go through menuconfig and compile everything in...  |
|
| Back to top |
|
 |
scout
Veteran
Joined: 08 Mar 2003
Posts: 1991
Location: France, Paris en Semaine / Metz le W-E
|
| Posted: Mon Apr 26, 2004 9:02 am Post subject: Re: Upgrade kernel, and Shorewall doesn't work |
|
|
| mikehild wrote: | | Code: | (...)
Masqueraded Subnets and Hosts:
iptables: Invalid argument
Processing /etc/shorewall/stop ...
IP Forwarding Enabled
Processing /etc/shorewall/stopped ...
|
The only thing I can think of is that there's some hidden option in the kernel configs that I stumbled across with 2.4.20, but can't find anymore... Maybe I should just go through menuconfig and compile everything in... |
You should first try to re-emerge iptables
_________________
http://petition.eurolinux.org/ - Petition against ePatents
L'essence de la finesse |
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
Kernel & Hardware
