Hi, I have problems when trying to start shorewall when one of the interfaces (net/outside) is of type ppp0. (Avslutad = finished/exited) moria:/# /etc/init.d/shorewall restart Restarting "Shorewall firewall": /etc/init.d/shorewall: line 73: 9935 Avslutad $SRWL restart >/dev/null 2>&1 not done. moria:/# The syslog and messages doesn''t say anything. Any tips? My system: debian woody shorewall 1.3.9b -- /jonas
On Sat, 10 May 2003, Jonas Jacobsson wrote:> Hi, > > I have problems when trying to start shorewall when > one of the interfaces (net/outside) is of type ppp0. > (Avslutad = finished/exited) > > moria:/# /etc/init.d/shorewall restart > Restarting "Shorewall firewall": /etc/init.d/shorewall: line 73: 9935 > Avslutad $SRWL restart >/dev/null 2>&1 > not done. > moria:/# > > The syslog and messages doesn''t say anything. > > Any tips? >Looks like your /etc/init.d/shorewall script has been corrupted -- that file is provided by the Shorewall Debian maintainer so I''m afraid I can''t help you beyond that. -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://www.shorewall.net Washington USA \ teastep@shorewall.net
Tom Eastep wrote:>>I have problems when trying to start shorewall when >>one of the interfaces (net/outside) is of type ppp0. >>(Avslutad = finished/exited) >> >>moria:/# /etc/init.d/shorewall restart >>Restarting "Shorewall firewall": /etc/init.d/shorewall: line 73: 9935 >>Avslutad $SRWL restart >/dev/null 2>&1 >>not done. >>moria:/# >> >>The syslog and messages doesn''t say anything. >> >>Any tips? > > Looks like your /etc/init.d/shorewall script has been corrupted -- that > file is provided by the Shorewall Debian maintainer so I''m afraid I can''t > help you beyond that.I don''t think that it''s any fault with the debian start script. It works perfectly if the net interface is eth0. The script only starts shorewall, so I would think that shorewall exits with an error that the script can''t handle. The function that restarts Shorewall: shorewall_restart () { echo -n "Restarting \"Shorewall firewall\": " $SRWL restart > /dev/null 2>&1 && echo "done." || echo "not done." return 0 } Shorewall doesn''t start manually either. So the problem should still be within Shorewall. When I manually tries to start Shorewall with the debug parameter it exits with the following message: moria:/etc/shorewall# shorewall debug start ... + echo 1 + run_user_exit stopped ++ find_file stopped ++ ''['' -n '''' -a -f /stopped '']'' ++ echo /etc/shorewall/stopped + local user_exit=/etc/shorewall/stopped + ''['' -f /etc/shorewall/stopped '']'' + logger ''Shorewall Stopped'' + rm -rf /tmp/shorewall-2425 + my_mutex_off + ''['' -n Yes '']'' + mutex_off + rm -f /var/lib/shorewall/lock + have_mutex+ kill 2425 Avslutad moria:/etc/shorewall# (Avslutad = Exited) -- /jonas
On Sun, 2003-05-11 at 23:11, Jonas Jacobsson wrote:> moria:/etc/shorewall# shorewall debug start > ... > + echo 1 > + run_user_exit stopped > ++ find_file stopped > ++ ''['' -n '''' -a -f /stopped '']'' > ++ echo /etc/shorewall/stopped > + local user_exit=/etc/shorewall/stopped > + ''['' -f /etc/shorewall/stopped '']'' > + logger ''Shorewall Stopped'' > + rm -rf /tmp/shorewall-2425 > + my_mutex_off > + ''['' -n Yes '']'' > + mutex_off > + rm -f /var/lib/shorewall/lock > + have_mutex> + kill 2425 > Avslutad > moria:/etc/shorewall#Several things: a) In Shorewall 1.2, you have to look back in the trace file to find where the error really occured. What you have shown here is useless. b) Shorewall 1.2 is NO LONGER SUPPORTED and I''m not going to spend any more time on this. -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://www.shorewall.net Washington USA \ teastep@shorewall.net