Vicente Ferrando
2003-Sep-30 04:33 UTC
[Shorewall-users] iptables v1.2.8: host/network ''eth1:x.x.x.x'' not found.
Good afternoon list, I''m using Shorewall 1.4.7-Beta2 and trying to add a second public IP address(y.y.y.y) to a net interface on my shorewall FW. And acording to the Shorewall and aliased interafces the config I need add would be: /etc/shorewall/interfaces: - eth1 x.x.x.b,y.y.y.b where x.x.x.b and y.y.y.b are the broadcast address for old and new ip network. /etc/shorewall/hosts net eth1:x.x.x.n/27,y.y.y.n/24 x.x.x.n and y.y.y.n are the network address associated with each interface with their corresponding mask. I''ve also tryed to define hosts like this: net eth1:x.x.x.n/27 net eth1:y.y.y.n/24 But the result was the same. The problem is that when when I try to start shorewall with the new config I get the error: iptables v1.2.8: host/network ''eth1:x.x.x.n'' not found. Nevertheless a fes lines above this one I can read: Determining Hosts in Zones... Net Zone: eth1:x.x.x.n/27 eth1:y.y.y.n/24 Aparently hosts file can be read son I don''t know where can I look for the error. Also tryed a similar configuration but using private IPs on the local zone and worked. Any help would be appreciated. Best regards.
Tom Eastep
2003-Sep-30 07:07 UTC
[Shorewall-users] iptables v1.2.8: host/network ''eth1:x.x.x.x'' not found.
On Tue, 2003-09-30 at 06:32, Vicente Ferrando wrote:> > The problem is that when when I try to start shorewall with the new > config I get the error: > > iptables v1.2.8: host/network ''eth1:x.x.x.n'' not found. > > Nevertheless a fes lines above this one I can read: > > Determining Hosts in Zones... > Net Zone: eth1:x.x.x.n/27 eth1:y.y.y.n/24 > > Aparently hosts file can be read son I don''t know where can I look for > the error.See http://shorewall.net/troubleshoot.htm in the paragraph "If the firewall fails to start..." -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net
Vicente Ferrando
2003-Sep-30 07:50 UTC
[Shorewall-users] iptables v1.2.8: host/network ''eth1:x.x.x.x'' not found.
Thanks Tom, I''m sure debug start will be of help some other time. Don''t ask me why but deleting two lines I added in the "tos" file solved the problem. The lines where something like: loc:(internal IP) all tcp - 4662 8 Thanks for your help. El mar, 30-09-2003 a las 16:07, Tom Eastep escribi?:> On Tue, 2003-09-30 at 06:32, Vicente Ferrando wrote: > > > > > The problem is that when when I try to start shorewall with the new > > config I get the error: > > > > iptables v1.2.8: host/network ''eth1:x.x.x.n'' not found. > > > > Nevertheless a fes lines above this one I can read: > > > > Determining Hosts in Zones... > > Net Zone: eth1:x.x.x.n/27 eth1:y.y.y.n/24 > > > > Aparently hosts file can be read son I don''t know where can I look for > > the error. > > See http://shorewall.net/troubleshoot.htm in the paragraph "If the > firewall fails to start..." > > -Tom
Tom Eastep
2003-Sep-30 08:07 UTC
[Shorewall-users] iptables v1.2.8: host/network ''eth1:x.x.x.x'' not found.
On Tue, 2003-09-30 at 09:48, Vicente Ferrando wrote:> Thanks Tom, > > I''m sure debug start will be of help some other time. > > Don''t ask me why but deleting two lines I added in the "tos" file > solved the problem. The lines where something like: > loc:(internal IP) all tcp - 4662 8That syntax works fine here.... -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net