Tried compiling my ruleset with the perl compiler and encountered problems.... Environment info is: -> uname -a Linux fw1 2.6.20.3 #3 SMP Wed Mar 14 00:07:48 PDT 2007 i686 i686 i386 GNU/Linux -> /usr/local/sbin/iptables --version iptables v1.3.7 -> grep -i shore /var/log/rpmpkgs shorewall-3.4.3-1.noarch.rpm shorewall-perl-4.0.0-0Beta1.noarch.rpm I ran a compile into "./.foo" with the perl compiler, and got this output: # ./.foo start Starting Shorewall.... iptables-restore v1.3.7: iptables-restore: unable to initializetable ''raw'' Error occurred at line: 1 Try `iptables-restore -h'' or ''iptables-restore --help'' for more information. ERROR: iptables-restore Failed. Input is in /var/lib/shorewall/.iptables-restore-input Restoring Shorewall... ./.foo: line 252: 15196 Segmentation fault $RESTOREPATH restore Terminated Any ideas? I seem to have run into a serious scaling issue with my environment, using the shell based compiler - my rules take 20 minutes+ to load... I was hoping the perl based stuff would be faster, but I can''t get past the above.... ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/
Phil Cordier wrote:> Tried compiling my ruleset with the perl compiler and encountered > problems.... > > Environment info is: > > -> uname -a > Linux fw1 2.6.20.3 #3 SMP Wed Mar 14 00:07:48 PDT 2007 i686 i686 i386 > GNU/Linux > > -> /usr/local/sbin/iptables --version > iptables v1.3.7 > > -> grep -i shore /var/log/rpmpkgs > shorewall-3.4.3-1.noarch.rpm > shorewall-perl-4.0.0-0Beta1.noarch.rpm > > > I ran a compile into "./.foo" with the perl compiler, and got this output: > > > # ./.foo start > Starting Shorewall.... > iptables-restore v1.3.7: iptables-restore: unable to initializetable ''raw''It appears that Shorewall-perl is currently dependent on ''raw'' table support. I suppose that your kernel/iptables doesn''t include that support. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/
Tom Eastep wrote:> > It appears that Shorewall-perl is currently dependent on ''raw'' table > support. I suppose that your kernel/iptables doesn''t include that support. >4.0.0 Beta 4 will correct this problem. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/