David Burrow
2006-Nov-14 23:31 UTC
grep: /var/lib/shorewall/restore-base: No such file or directory
All,
I''m using Shorewall 3.2.5 on a SuSE linux system with a custom kernel
patched with ipsets. When I issue a "shorewall save" I get the
following output:
Dynamic Rules Saved
Currently-running Configuration Saved to /var/lib/shorewall/restore
grep: /var/lib/shorewall/restore-base: No such file or directory
grep: /var/lib/shorewall/restore-base: No such file or directory
Current Ipset Contents Saved to /var/lib/shorewall/restore-ipsets
The Shorewall website says that restore-base is created by shorewall
start and shorewall restart, so I''ve tried stopping shorewall,
deleting all files in /var/lib/shorewall, then issuing a start
command, but it doesn''t seem to create the file.
I''ve also tried removing the package via "rpm -e shorewall"
and
reinstalling it, but that also didn''t remedy the problem.
The output of "ip addr show" is:
1: lo: <LOOPBACK,UP,10000> mtu 16436 qdisc noqueue
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,NOTRAILERS,UP,10000> mtu 1500 qdisc
pfifo_fast qlen 1000
link/ether 00:02:b3:a2:b6:59 brd ff:ff:ff:ff:ff:ff
inet 155.97.239.106/24 brd 155.97.239.255 scope global eth0
inet6 fe80::202:b3ff:fea2:b659/64 scope link
valid_lft forever preferred_lft forever
3: sit0: <NOARP> mtu 1480 qdisc noop
link/sit 0.0.0.0 brd 0.0.0.0
The output of "ip route show" is:
155.97.239.0/24 dev eth0 proto kernel scope link src 155.97.239.106
169.254.0.0/16 dev eth0 scope link
127.0.0.0/8 dev lo scope link
default via 155.97.239.1 dev eth0
Any ideas how to get the restore-base file created?
--
David
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net''s Techsay panel and you''ll get the chance
to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
Tom Eastep
2006-Nov-14 23:43 UTC
Re: grep: /var/lib/shorewall/restore-base: No such file or directory
David Burrow wrote:> All, > > I''m using Shorewall 3.2.5 on a SuSE linux system with a custom kernel > patched with ipsets. When I issue a "shorewall save" I get the > following output: > > Dynamic Rules Saved > Currently-running Configuration Saved to /var/lib/shorewall/restore > grep: /var/lib/shorewall/restore-base: No such file or directory > grep: /var/lib/shorewall/restore-base: No such file or directory > Current Ipset Contents Saved to /var/lib/shorewall/restore-ipsetHmmm -- I never modified the ''save'' code for ipsets in Shorewall 3.2. I''ll have to work up a fix. Will you be willing to test it? (I don''t have an ipsets-patched kernel available). -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net''s Techsay panel and you''ll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
Tom Eastep
2006-Nov-15 00:03 UTC
Re: grep: /var/lib/shorewall/restore-base: No such file or directory
David Burrow wrote:> All, > > I''m using Shorewall 3.2.5 on a SuSE linux system with a custom kernel > patched with ipsets. When I issue a "shorewall save" I get the > following output: > > Dynamic Rules Saved > Currently-running Configuration Saved to /var/lib/shorewall/restore > grep: /var/lib/shorewall/restore-base: No such file or directory > grep: /var/lib/shorewall/restore-base: No such file or directory > Current Ipset Contents Saved to /var/lib/shorewall/restore-ipsetsPlease try the attached patches. The first patch is for /sbin/shorewall; the second is for /usr/share/shorewall/functions -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net''s Techsay panel and you''ll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
Tom Eastep
2006-Nov-15 00:17 UTC
Re: grep: /var/lib/shorewall/restore-base: No such file or directory
David Burrow wrote:> All, > > I''m using Shorewall 3.2.5 on a SuSE linux system with a custom kernel > patched with ipsets. When I issue a "shorewall save" I get the > following output: > > Dynamic Rules Saved > Currently-running Configuration Saved to /var/lib/shorewall/restore > grep: /var/lib/shorewall/restore-base: No such file or directory > grep: /var/lib/shorewall/restore-base: No such file or directory > Current Ipset Contents Saved to /var/lib/shorewall/restore-ipsets >Here are two better patches. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net''s Techsay panel and you''ll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
David Burrow
2006-Nov-15 03:28 UTC
Re: grep: /var/lib/shorewall/restore-base: No such file or directory
Tom, et al. Those patches seem to have done the trick. I''ve applied them and then stopped, started, saved, restored and restarted Shorewall with no errors, and everything appears to be functioning normally. Thanks much for the speedy reply, I greatly appreciate it! David> From: Tom Eastep <teastep@shorewall.net> > To: Shorewall Users <shorewall-users@lists.sourceforge.net> > Date: Tue, 14 Nov 2006 15:43:31 -0800 > Subject: Re: [Shorewall-users] grep: /var/lib/shorewall/restore-base: No such file or directory > David Burrow wrote: > > All, > > > > I''m using Shorewall 3.2.5 on a SuSE linux system with a custom kernel > > patched with ipsets. When I issue a "shorewall save" I get the > > following output: > > > > Dynamic Rules Saved > > Currently-running Configuration Saved to /var/lib/shorewall/restore > > grep: /var/lib/shorewall/restore-base: No such file or directory > > grep: /var/lib/shorewall/restore-base: No such file or directory > > Current Ipset Contents Saved to /var/lib/shorewall/restore-ipset > > Hmmm -- I never modified the ''save'' code for ipsets in Shorewall 3.2. I''ll have > to work up a fix. Will you be willing to test it? (I don''t have an > ipsets-patched kernel available). > > -Tom > > -- > Tom Eastep \ Nothing is foolproof to a sufficiently talented fool > Shoreline, \ http://shorewall.net > Washington USA \ teastep@shorewall.net > PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key > > > > > ---------- Forwarded message ---------- > From: Tom Eastep <teastep@shorewall.net> > To: Shorewall Users <shorewall-users@lists.sourceforge.net> > Date: Tue, 14 Nov 2006 16:03:36 -0800 > Subject: Re: [Shorewall-users] grep: /var/lib/shorewall/restore-base: No such file or directory > David Burrow wrote: > > All, > > > > I''m using Shorewall 3.2.5 on a SuSE linux system with a custom kernel > > patched with ipsets. When I issue a "shorewall save" I get the > > following output: > > > > Dynamic Rules Saved > > Currently-running Configuration Saved to /var/lib/shorewall/restore > > grep: /var/lib/shorewall/restore-base: No such file or directory > > grep: /var/lib/shorewall/restore-base: No such file or directory > > Current Ipset Contents Saved to /var/lib/shorewall/restore-ipsets > > Please try the attached patches. > > The first patch is for /sbin/shorewall; the second is for > /usr/share/shorewall/functions > > -Tom > -- > Tom Eastep \ Nothing is foolproof to a sufficiently talented fool > Shoreline, \ http://shorewall.net > Washington USA \ teastep@shorewall.net > PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net''s Techsay panel and you''ll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
David Burrow
2006-Nov-15 03:29 UTC
Re: grep: /var/lib/shorewall/restore-base: No such file or directory
Also, I failed to mention it, but my ipsets are being maintained just fine, too, so it appears the patches worked. Thanks again, -- David Burrow On 11/14/06, David Burrow <dnburrow@gmail.com> wrote:> Tom, et al. > > Those patches seem to have done the trick. I''ve applied them and then > stopped, started, saved, restored and restarted Shorewall with no > errors, and everything appears to be functioning normally. Thanks > much for the speedy reply, I greatly appreciate it! > > David > > > > From: Tom Eastep <teastep@shorewall.net> > > To: Shorewall Users <shorewall-users@lists.sourceforge.net> > > Date: Tue, 14 Nov 2006 15:43:31 -0800 > > Subject: Re: [Shorewall-users] grep: /var/lib/shorewall/restore-base: No such file or directory > > David Burrow wrote: > > > All, > > > > > > I''m using Shorewall 3.2.5 on a SuSE linux system with a custom kernel > > > patched with ipsets. When I issue a "shorewall save" I get the > > > following output: > > > > > > Dynamic Rules Saved > > > Currently-running Configuration Saved to /var/lib/shorewall/restore > > > grep: /var/lib/shorewall/restore-base: No such file or directory > > > grep: /var/lib/shorewall/restore-base: No such file or directory > > > Current Ipset Contents Saved to /var/lib/shorewall/restore-ipset > > > > Hmmm -- I never modified the ''save'' code for ipsets in Shorewall 3.2. I''ll have > > to work up a fix. Will you be willing to test it? (I don''t have an > > ipsets-patched kernel available). > > > > -Tom > > > > -- > > Tom Eastep \ Nothing is foolproof to a sufficiently talented fool > > Shoreline, \ http://shorewall.net > > Washington USA \ teastep@shorewall.net > > PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key > > > > > > > > > > ---------- Forwarded message ---------- > > From: Tom Eastep <teastep@shorewall.net> > > To: Shorewall Users <shorewall-users@lists.sourceforge.net> > > Date: Tue, 14 Nov 2006 16:03:36 -0800 > > Subject: Re: [Shorewall-users] grep: /var/lib/shorewall/restore-base: No such file or directory > > David Burrow wrote: > > > All, > > > > > > I''m using Shorewall 3.2.5 on a SuSE linux system with a custom kernel > > > patched with ipsets. When I issue a "shorewall save" I get the > > > following output: > > > > > > Dynamic Rules Saved > > > Currently-running Configuration Saved to /var/lib/shorewall/restore > > > grep: /var/lib/shorewall/restore-base: No such file or directory > > > grep: /var/lib/shorewall/restore-base: No such file or directory > > > Current Ipset Contents Saved to /var/lib/shorewall/restore-ipsets > > > > Please try the attached patches. > > > > The first patch is for /sbin/shorewall; the second is for > > /usr/share/shorewall/functions > > > > -Tom > > -- > > Tom Eastep \ Nothing is foolproof to a sufficiently talented fool > > Shoreline, \ http://shorewall.net > > Washington USA \ teastep@shorewall.net > > PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key >------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net''s Techsay panel and you''ll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
Tom Eastep
2006-Nov-15 03:34 UTC
Re: grep: /var/lib/shorewall/restore-base: No such file or directory
David Burrow wrote:> Also, > > I failed to mention it, but my ipsets are being maintained just fine, > too, so it appears the patches worked.Thanks for testing, David. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net''s Techsay panel and you''ll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV