In an email yesterday evening, Perry Nguyen expressed concern about the
moving of the ''restarted'' file from /var/lib/shorewall to
$STATEDIR
(STATEDIR is set in your shorewall.conf file and defaults to
/var/state/shorewall). I''m afraid I was a bit short with Perry for
which I
apologize.
Here''s the story:
1. What is the ''restarted'' file used for?
This file was introduced in version 1.3.5 to allow the time that the
NetFilter counters were last reset to be displayed in the output of
certain /sbin/shorewall commands. The current date and time are stored in
the ''restarted'' file during processing of the start, restart
and reset
commands.
2. What if the file doesn''t exist?
The /sbin/shorewall commands that normally display the date/time of
last counter reset simply omit that information; all other information
that the commands display will appear normally.
3. Do I need to move the ''restarted'' file from
/var/lib/shorewall to
$STATEDIR?
No - after you have installed 1.3.9 but before you have issued a
start, restart or reset command, $STATEDIR/restarted will simply not exist
and /sbin/shorewall will behave as described in the previous bullet.
It was a conscious decision on my part to not document the move of
''restarted'' in the release notes (although it was an oversight
that the
move was not mentioned in the change log).
I will be sure to document all such future changes.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://www.shorewall.net
ICQ: #60745924 \ teastep@shorewall.net
