I took down shorewall.net yesterday to upgrade the firewall and server to RH8. For those contemplating a similar upgrade, here is how it went: The upgrade of the firewall is an unqualified failure: a) Attempting to boot from the CD-ROM resulted in installer confusion shortly after loading the AIC7XXX driver (while loading the driver, the installer seems to forget which version of the ISO it is installing and complains of a version mis-match). b) I made a boot floppy and the installation proceeded a bit further however this time Anaconda crashed. This has been reported by other persons attempting to upgrade. The upgrade of the server went somewhat better. After rebooting though, I discovered: a) The Apache config files have changed substantially from 1.3->2.0 -- about an hour was spent hacking up the config to make 2.0 happy. Please don''t hesitate to let me know if something on the site still doesn''t behave correctly. b) Apache 2.0 no longer has a throttle module :-( c) Some of the Perl modules that I had previously installed seemed to wander away during the upgrade so I had to spend 15-20 minutes with CPAN to restore them. d) Postfix bounced a bunch of email because there was no /usr/sbin/sendmail for SpamAssassin to use to re-queue filtered mail (the installer doesn''t link sendmail->sendmail.postfix even if you don''t have the sendmail package installed). -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net
tom> The upgrade of the firewall is an unqualified failure: Any follow up(s) to your firewall upgrading attempts under RH8.0 might be of interest to others (at least me!). Thanks for the initial RH8.0 info, -Kenneth
Tom Eastep wrote:> I took down shorewall.net yesterday to upgrade the firewall and server > to RH8. For those contemplating a similar upgrade, here is how it went: > > The upgrade of the firewall is an unqualified failure: > > a) Attempting to boot from the CD-ROM resulted in installer confusion > shortly after loading the AIC7XXX driver (while loading the driver, the > installer seems to forget which version of the ISO it is installing and > complains of a version mis-match). > > b) I made a boot floppy and the installation proceeded a bit further > however this time Anaconda crashed. This has been reported by other > persons attempting to upgrade. >I''ve now attributed the above problems so a defective CDROM drive in my firewall. I just completed an upgrade to 8.0 using a net boot floppy and NFS. a) The upgrade went smoothly. b) The 2.4.18-14 kernel includes HTB :-) c) The version of iproute included in 8.0 does not support HTB :-( I reinstalled the version of /sbin/tc from the HTB site and I''m now running my firewall on the stock RH kernel. I will be installing the MPPE RPM as soon as I locate one for this kernel and that will be the first time in a long time that I have been able to run a stock kernel on my firewall and still have full functionality. -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net