Hi guys! I''m having a little problem. The scenario is: * Ubuntu 12.10 * 2 ADSL (PPPoE) connections. One on eth1 and the other on eth2 * I run pppd and get both working ok. * In /etc/default/shorewall put "wait interface ppp0 ppp1" for wait both connections on reboot. * I have a tcinterfaces for each ppp and tcclasses and tcfilters too. The problems occurs when the system has been rebooted for an update and one interface never goes up again. I move on /etc/default/shorewall the line "wait interface ppp0 ppp1" to "wait interface ppp0" and reboot again to see what happend and problem still there! What happend? The problem was the tcinterfaces, tcclasses and tcfilters have "ppp1" rules and because this link was down every time i start Shorewall. Shorewall says "start failed". I have to manually delete all lines on tc_ with ppp1 reference and then i can get shorewall up and running again. Is there any way to get this working without have to create 2 different /etc/shorewall/* files for both cases? Something like "shorewall disable tc ISP1" Best regards and thanks for read this email. -- Emiliano Vazquez | PcCentro Informatica & CCTV Office: +54 (11) 4635-3218 y Rotativas Movil: 011-15-6253-7165 Mail: emilianovazquez@gmail.com Web: http://www.pccentro.com.ar ------------------------------------------------------------------------------ Try New Relic Now & We''ll Send You this Cool Shirt New Relic is the only SaaS-based application performance monitoring service that delivers powerful full stack analytics. Optimize and monitor your browser, app, & servers with just a few lines of code. Try New Relic and get this awesome Nerd Life shirt! http://p.sf.net/sfu/newrelic_d2d_may
On 05/22/2013 07:57 PM, Emiliano Vazquez wrote:> Hi guys! > > I''m having a little problem. > The scenario is: > * Ubuntu 12.10 > * 2 ADSL (PPPoE) connections. One on eth1 and the other on eth2 > * I run pppd and get both working ok. > * In /etc/default/shorewall put "wait interface ppp0 ppp1" for wait both > connections on reboot. > * I have a tcinterfaces for each ppp and tcclasses and tcfilters too. > > The problems occurs when the system has been rebooted for an update and > one interface never goes up again. I move on /etc/default/shorewall the > line "wait interface ppp0 ppp1" to "wait interface ppp0" and reboot > again to see what happend and problem still there! > > What happend? The problem was the tcinterfaces, tcclasses and tcfilters > have "ppp1" rules and because this link was down every time i start > Shorewall. Shorewall says "start failed". > I have to manually delete all lines on tc_ with ppp1 reference and then > i can get shorewall up and running again. > > Is there any way to get this working without have to create 2 different > /etc/shorewall/* files for both cases? Something like "shorewall disable > tc ISP1"Which version of Shorewall are you running? And do you use Shorewall''s Multi-ISP facilities to manage your two uplinks? -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Try New Relic Now & We''ll Send You this Cool Shirt New Relic is the only SaaS-based application performance monitoring service that delivers powerful full stack analytics. Optimize and monitor your browser, app, & servers with just a few lines of code. Try New Relic and get this awesome Nerd Life shirt! http://p.sf.net/sfu/newrelic_d2d_may
El 23/05/13 10:15, Tom Eastep escribió:> Which version of Shorewall are you running? And do you use Shorewall''s > Multi-ISP facilities to manage your two uplinks? > > -TomHi Tom! i''m using 4.5.15 and follow this tutorial[1] for make this work. When i run "shorewall start" i have tc_files error because the interface is down (ppp0 or ppp1). Best regards. [1] http://www.shorewall.net/MultiISP.html -- Emiliano Vazquez | PcCentro Informatica & CCTV Office: +54 (11) 4635-3218 y Rotativas Movil: 011-15-6253-7165 Mail: emilianovazquez@gmail.com Web: http://www.pccentro.com.ar ------------------------------------------------------------------------------ Try New Relic Now & We''ll Send You this Cool Shirt New Relic is the only SaaS-based application performance monitoring service that delivers powerful full stack analytics. Optimize and monitor your browser, app, & servers with just a few lines of code. Try New Relic and get this awesome Nerd Life shirt! http://p.sf.net/sfu/newrelic_d2d_may
On 05/23/2013 11:27 AM, Emiliano Vazquez wrote:> El 23/05/13 10:15, Tom Eastep escribió: >> Which version of Shorewall are you running? And do you use Shorewall''s >> Multi-ISP facilities to manage your two uplinks? >> >> -Tom > Hi Tom! i''m using 4.5.15 and follow this tutorial[1] for make this work. > > When i run "shorewall start" i have tc_files error because the interface > is down (ppp0 or ppp1). >Then you need to: a) Add the ''optional'' option on ppp0 and ppp1 in /etc/shorewall/interfaces; and b) Run LSM to handle up/down events. Once I have released 4.5.17, you probably want to install that and also run Shorewall-init; it handles up events more quickly that LSM. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Try New Relic Now & We''ll Send You this Cool Shirt New Relic is the only SaaS-based application performance monitoring service that delivers powerful full stack analytics. Optimize and monitor your browser, app, & servers with just a few lines of code. Try New Relic and get this awesome Nerd Life shirt! http://p.sf.net/sfu/newrelic_d2d_may
> Then you need to: > > a) Add the ''optional'' option on ppp0 and ppp1 in > /etc/shorewall/interfaces; and > > Ok. I will see this. I think this is in that way. The problem was ontc_files who has defined ppp1 and ifb1. ppp1 was down and i think this was the problem. I will test this in a place without users.> b) Run LSM to handle up/down events. > > I have LSM but i can`t make it work ok. I`m reading about this.> Once I have released 4.5.17, you probably want to install that and also > run Shorewall-init; it handles up events more quickly that LSM. > > Ok. You say we will have a built in Link status Manager?Best regards. ------------------------------------------------------------------------------ Try New Relic Now & We''ll Send You this Cool Shirt New Relic is the only SaaS-based application performance monitoring service that delivers powerful full stack analytics. Optimize and monitor your browser, app, & servers with just a few lines of code. Try New Relic and get this awesome Nerd Life shirt! http://p.sf.net/sfu/newrelic_d2d_may
On 5/23/13 12:38 PM, "Emiliano Vazquez" <emilianovazquez@gmail.com> wrote:> >> Then you need to: >> >> a) Add the ''optional'' option on ppp0 and ppp1 in >> /etc/shorewall/interfaces; and >> > Ok. I will see this. I think this is in that way. The problem was on tc_files > who has defined ppp1 and ifb1. ppp1 was down and i think this was the problem. > I will test this in a place without users. > >> b) Run LSM to handle up/down events. >> > I have LSM but i can`t make it work ok. I`m reading about this. > >> Once I have released 4.5.17, you probably want to install that and also >> run Shorewall-init; it handles up events more quickly that LSM. >> > Ok. You say we will have a built in Link status Manager?No. I''m saying that it corrects some defects that are present in your version. -Tom You do not need a parachute to skydive. You only need a parachute to skydive twice. ------------------------------------------------------------------------------ Try New Relic Now & We''ll Send You this Cool Shirt New Relic is the only SaaS-based application performance monitoring service that delivers powerful full stack analytics. Optimize and monitor your browser, app, & servers with just a few lines of code. Try New Relic and get this awesome Nerd Life shirt! http://p.sf.net/sfu/newrelic_d2d_may