I use the free VMWare server on a CentOS 4.4 box with Shorewall 3.2.4 at home. Through vmware-config.pl I have it created a virtual network interface, vmnet1, which has an address of 192.168.25.1 and a network mast of 255.255.255.0. All of my virtual machines are on that network. Shorewall works great when everything is working. However, when I boot/reboot my host box, Shorewall goes into a stopped type mode at startup (sorry about my lack of skills here) because vmnet1 is not yet up. I thought about creating my 192.168.25.1 as a virtual interface on my primary network card, but I am afraid packets between the virtual machines will leak onto the wire (again, I don''t know much). Is there a way to have Shorewall recognize that vmnet1 is not yet up and to let everything go for a bit until it comes up? Further, is there a better way to set it up than using this vmnet1. Thanks for the great software! ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net''s Techsay panel and you''ll get the chance to share your opinions on IT & business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
John Thomas wrote:> > Is there a way to have Shorewall recognize that vmnet1 is not yet up and > to let everything go for a bit until it comes up? Further, is there a > better way to set it up than using this vmnet1.Yes -- don''t configure Shorewall to require that vmnet1 be up when Shorewall starts. Since you haven''t told us why Shroewall isn''t starting (no error message even), there''s nothing more I can tell you other than the Shorewall documentation is clear when describing features that require an interface to be up. The usual thing that people screw up are using ''detect'' for some aspect of the interface, or placing the interface name in the SUBNET column of /etc/shorewall/masq.> > Thanks for the great software!You''re welcome. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net''s Techsay panel and you''ll get the chance to share your opinions on IT & business topics through brief surveys-and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV