Hi there, In Shorewall 2.02, if I have a user-defined action such as: # action.LogMcast # LOG:info - 224.0.0.0/4 then the generated chain ends up with two logging rules; the first one is as I would expect but the second one is not: Chain LogMcast (2 references) pkts bytes target prot opt in out source destination 0 0 LOG all -- * * 0.0.0.0/0 224.0.0.0/4 limit: avg 1/sec burst 2 LOG flags 0 level 6 prefix `Firewall:LogMcast:LOG:'' 0 0 LOG all -- * * 0.0.0.0/0 224.0.0.0/4 LOG flags 0 level 4 Is this behavior intended or am I using the LOG target incorrectly? Thanks! --eric
Eric E. Bowles wrote:> Hi there, > > In Shorewall 2.02, if I have a user-defined action such as: > > # action.LogMcast > # > LOG:info - 224.0.0.0/4 > > then the generated chain ends up with two logging rules; the first one > is as I would expect but the second one is not: > > Chain LogMcast (2 references) > pkts bytes target prot opt in out source destination > 0 0 LOG all -- * * 0.0.0.0/0 224.0.0.0/4 limit: avg 1/sec burst 2 LOG flags 0 level 6 prefix `Firewall:LogMcast:LOG:'' > 0 0 LOG all -- * * 0.0.0.0/0 224.0.0.0/4 LOG flags 0 level 4 > > > Is this behavior intended or am I using the LOG target incorrectly?It''s a bug -- please try the ''firewall'' script at ftp://shorewall.net/pub/shorewall/errata/2.0.2/firewall Thanks, -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net
Tom,> It''s a bug -- please try the ''firewall'' script at > ftp://shorewall.net/pub/shorewall/errata/2.0.2/firewallYup, that fixes it. Thanks! --eric> Eric E. Bowles wrote: > > >Hi there, > > > >In Shorewall 2.02, if I have a user-defined action such as: > > > > # action.LogMcast > > # > > LOG:info - 224.0.0.0/4 > > > >then the generated chain ends up with two logging rules; the first one > >is as I would expect but the second one is not: > > > >Chain LogMcast (2 references) > > pkts bytes target prot opt in out source > > destination 0 0 LOG all -- * * > > 0.0.0.0/0 224.0.0.0/4 limit: avg 1/sec burst 2 LOG > > flags 0 level 6 prefix `Firewall:LogMcast:LOG:'' 0 0 LOG all > > -- * * 0.0.0.0/0 224.0.0.0/4 LOG flags > > 0 level 4 > > > >Is this behavior intended or am I using the LOG target incorrectly? > > It''s a bug -- please try the ''firewall'' script at > ftp://shorewall.net/pub/shorewall/errata/2.0.2/firewall > > Thanks, > -Tom > -- > Tom Eastep \ Nothing is foolproof to a sufficiently talented fool > Shoreline, \ http://shorewall.net > Washington USA \ teastep@shorewall.net > > _______________________________________________ > Shorewall-users mailing list > Post: Shorewall-users@lists.shorewall.net > Subscribe/Unsubscribe: > https://lists.shorewall.net/mailman/listinfo/shorewall-users > Support: http://www.shorewall.net/support.htm > FAQ: http://www.shorewall.net/FAQ.htm >