On Wed, 7 Aug 2002, Arvid Glowa wrote:
> Hi,
>
> we have a firewall system under redhat 7.2 with shorewall 1.1-17. The
> system works very well, without any probs. Now we have installed a new
> version ... 1.2-13. After the update the systems runs for 2 hours ....
> and crashes with a kernel panic. We have tried another kernel and
> iptabes paket but the same problem. Downgrading the system to 1.1-17
> .... and it runs stable. So ... what are the basic diffs between 1.1-xx
> and 1.2-xx .... i have no more ideas what i can try ......
>
1.2-13 is hardly a New version of Shorewall :-) It was released 3 months
ago.
Have you tried the latest kernel update from Redhat? What you are
apparently seeing is a Kernel bug that is being triggered by the different
ruleset in the newer version of Shorewall. Either that or a hardware
(probably RAM) problem. Where in the kernel is the panic? Is it in
networking code or in something unrelated to networking?
Remember that Shorewall is just a bunch of shell scripts that runs basic
utilities like ''iptables'' and ''ip'' to
configure your firewall. Once you
have "started" Shorewall, there is no Shorewall code running at all.
-Tom
--
Tom Eastep \ Shorewall - iptables made easy
AIM: tmeastep \ http://www.shorewall.net
ICQ: #60745924 \ teastep@shorewall.net