Further to my request for a sanity check yesterday, I have just tried the system live and am getting the following error when I do a shorewall start:- Processing /etc/shorewall/rules... iptables v1.2.8: multiport can only have one option Try `iptables -h'' or ''iptables --help'' for more information. Processing /etc/shorewall/stop ... IP Forwarding Enabled Processing /etc/shorewall/stopped ... Terminated I am using shorewall Version 2.0.6 on Whitebox 3.0 (Clone of Redhat 3.0) with 2.4.21-15.0.3.ELsmp kernel I have attached the rules file as it looks like that is where the error is ? Any clues ? Many thanks Denis -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. Marvin the E-Mail scanner
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Denis Croombs wrote: | Further to my request for a sanity check yesterday, I have just tried the | system live and am getting the following error when I do a shorewall start:- | | Processing /etc/shorewall/rules... | iptables v1.2.8: multiport can only have one option | Try `iptables -h'' or ''iptables --help'' for more information. | Processing /etc/shorewall/stop ... | IP Forwarding Enabled | Processing /etc/shorewall/stopped ... | Terminated | | I am using shorewall Version 2.0.6 on Whitebox 3.0 (Clone of Redhat 3.0) | with 2.4.21-15.0.3.ELsmp kernel | | I have attached the rules file as it looks like that is where the error is ? | | Any clues ? | | Many thanks Please see http://shorewall.net/troubleshoot.htm -- there is a section entitled "shorewall start and shorewall restart Errors". That section describes the troubleshooting method for these errors. That having been said, all of your rules are wrong. You should *not* have any entries in the SOURCE PORT(S) column - -Tom - -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFBI19+O/MAbZfjDLIRArA1AJ4xxVUVK6nW0GstVO4OYk8F47xKNwCdGoyw HlPCn+bJJlDnzMfUj1RJwDQ=Rful -----END PGP SIGNATURE-----
> | Further to my request for a sanity check yesterday, I have just triedthe> | system live and am getting the following error when I do a shorewall > start:- > | > | Processing /etc/shorewall/rules... > | iptables v1.2.8: multiport can only have one option > | Try `iptables -h'' or ''iptables --help'' for more information. > | Processing /etc/shorewall/stop ... > | IP Forwarding Enabled > | Processing /etc/shorewall/stopped ... > | Terminated > | > | I am using shorewall Version 2.0.6 on Whitebox 3.0 (Clone of Redhat 3.0) > | with 2.4.21-15.0.3.ELsmp kernel > | > | I have attached the rules file as it looks like that is where the > error is ? > | > | Any clues ? > | > | Many thanks > > Please see http://shorewall.net/troubleshoot.htm -- there is a section > entitled "shorewall start and shorewall restart Errors". That section > describes the troubleshooting method for these errors. > > That having been said, all of your rules are wrong. You should *not* > have any entries in the SOURCE PORT(S) column > > - -TomHi Tom Thanks for that, I now have the Firewall connecting to the internet and the DNZ working, so am working on getting the Local side of things setup, which is where t will take a little time. Again many thanks. Denis -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. Marvin the E-Mail scanner