Hi, I have Ubuntu 10.4 LTS. I installed shorewall 4.4.17 from shorewall-4.4.17.tar.bz2 at www.shorewall.net (Seattle server), unpacked it, ran ./install.sh as described in Install.htm. This also installed /etc/init/shorewall and /etc/rc*.d/* links to it. /etc/shorewall/shorewall.conf has STARTUP_ENABLED=Yes However, after a reboot of the system, # shorewall status shows: .. Shorewall is stopped State:Started (Tue Feb 22 08:51:45 CET 2011) from /etc/shorewall/ /var/log/shorewall-init.log has no entries for the rebooting # shorewall check (no errors reported) # shorewall start compiles OK and # shorewall status shows: .. Shorewall is running State:Started (Tue Feb 22 08:54:38 CET 2011) from /etc/shorewall/ and /var/log/shorewall-init.log has entries for this start.. (there is no /usr/lib/shorewall/restore or /etc/shorewall/routestopped file) What is wrong here? BTW: what is the meaning of: State:Started and Shorewall is stopped / running is there a ''substate'' inside State ? ------------------------------------------------------------------------------ Index, Search & Analyze Logs and other IT data in Real-Time with Splunk Collect, index and harness all the fast moving IT data generated by your applications, servers and devices whether physical, virtual or in the cloud. Deliver compliance at lower cost and gain new business insights. Free Software Download: http://p.sf.net/sfu/splunk-dev2dev
On 2/22/11 12:32 AM, N dhert wrote:> I have Ubuntu 10.4 LTS. I installed shorewall 4.4.17 from > shorewall-4.4.17.tar.bz2 at www.shorewall.net > <http://www.shorewall.net/> (Seattle server), > unpacked it, ran ./install.sh as described in Install.htm. > This also installed /etc/init/shorewall and /etc/rc*.d/* links to it. > /etc/shorewall/shorewall.conf has STARTUP_ENABLED=Yes > > However, after a reboot of the system, > # shorewall status > shows: > .. > Shorewall is stopped > State:Started (Tue Feb 22 08:51:45 CET 2011) from /etc/shorewall/ > > /var/log/shorewall-init.log > has no entries for the rebooting > > # shorewall check > (no errors reported) > # shorewall start > compiles OK and > # shorewall status > shows: > .. > Shorewall is running > State:Started (Tue Feb 22 08:54:38 CET 2011) from /etc/shorewall/ > and /var/log/shorewall-init.log has entries for this start.. > (there is no /usr/lib/shorewall/restore or /etc/shorewall/routestopped file) > > What is wrong here?Sounds like you didn''t set startup=1 in /etc/default/shorewall> > BTW: what is the meaning of: State:Started and Shorewall is stopped / > running > is there a ''substate'' inside State ? >It means that Shorewall was not shutdown properly during the last reboot. This is also explained by the /etc/default/shorewall issue. The ''State'' is determined by the presence of the chain ''shorewall'' in the current Netfilter configuration. The ''State'' is the state after the last /sbin/shorewall command that changed the state. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Index, Search & Analyze Logs and other IT data in Real-Time with Splunk Collect, index and harness all the fast moving IT data generated by your applications, servers and devices whether physical, virtual or in the cloud. Deliver compliance at lower cost and gain new business insights. Free Software Download: http://p.sf.net/sfu/splunk-dev2dev
On 2/22/11 7:08 AM, Tom Eastep wrote:> On 2/22/11 12:32 AM, N dhert wrote: >> >> BTW: what is the meaning of: State:Started and Shorewall is stopped / >> running >> is there a ''substate'' inside State ? >> > > It means that Shorewall was not shutdown properly during the last > reboot. This is also explained by the /etc/default/shorewall issue. The > ''State'' is determined by the presence of the chain ''shorewall'' in theThat should have been "The ''Status'' is determined...".> current Netfilter configuration. The ''State'' is the state after the last > /sbin/shorewall command that changed the state. >-Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Index, Search & Analyze Logs and other IT data in Real-Time with Splunk Collect, index and harness all the fast moving IT data generated by your applications, servers and devices whether physical, virtual or in the cloud. Deliver compliance at lower cost and gain new business insights. Free Software Download: http://p.sf.net/sfu/splunk-dev2dev