Shorewall users - Nov 2008 - ERROR: Unknown Host (All hosts) : /usr/share/shorewall/macro.Any macro or rule

Hi. I set, for example, a rule with a host server:

Macro.http accept fw net:www.google.es

I restart shorewall and it works, but when i stop the firewall for
disabling Internet (for any reason), and i want start the firewall it
says:

Failed to start firewall : 
Compiling...
Compiling /etc/shorewall/zones...
Compiling /etc/shorewall/interfaces...
   WARNING: Support for the detectnets interface option has been removed from
Shorewall-perl : /etc/shorewall/interfaces (line 11)
Determining Hosts in Zones...
Preprocessing Action Files...
   Pre-processing /usr/share/shorewall/action.Drop...
   Pre-processing /usr/share/shorewall/action.Reject...
Compiling /etc/shorewall/policy...
Compiling /etc/shorewall/routestopped for critical hosts...
Compiling /etc/shorewall/routestopped...
Adding Anti-smurf Rules
Adding rules for DHCP
   WARNING: The ''norfc1918'' option is deprecated
Compiling /usr/share/shorewall/rfc1918...
Compiling TCP Flags filtering...
Compiling ARP Filtering...
Compiling Kernel Route Filtering...
Compiling Martian Logging...
Compiling MAC Filtration -- Phase 1...
Compiling /etc/shorewall/rules...
   ERROR: Unknown Host (www.google.es) : /usr/share/shorewall/macro.HTTP

What could I do?

Thank you very much, I appreciate your help.


-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer''s
challenge
Build the coolest Linux based applications with Moblin SDK & win great
prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/

-------------- Original message ----------------------
From: Jose Manuel Colon <jsmclon@gmail.com>
> Hi. I set, for example, a rule with a host server:
> 
> Macro.http accept fw net:www.google.es
> 
> I restart shorewall and it works, but when i stop the firewall for
> disabling Internet (for any reason), and i want start the firewall it
> says:
> 
> Failed to start firewall : 
...
> Compiling /etc/shorewall/rules...
>    ERROR: Unknown Host (www.google.es) : /usr/share/shorewall/macro.HTTP
Read and understand

http://www.shorewall.net/configuration_file_basics.htm#dnsnames

If you still think that placing DNS names in your Shorewall configuration is a
good idea, then you will need to adjust your /etc/shorewall/routestopped file
and/or the setting of ADMINISABSENTMINDED in shorewall.conf so that DNS name
resolution works when the firewall is stopped.

-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer''s
challenge
Build the coolest Linux based applications with Moblin SDK & win great
prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/

Jose Manuel Colon wrote:
> What could I do?
Please don''t post simple usage questions on this list. The list is
reserved for discussion of Shorewall development issues.

-Tom
-- 
Tom Eastep        \ The ultimate result of shielding men from the
Shoreline,         \ effects of folly is to fill the world with fools.
Washington, USA     \                                 -Herbert Spencer
http://shorewall.net \________________________________________________



-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer''s
challenge
Build the coolest Linux based applications with Moblin SDK & win great
prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/

Sorry about that, but i have a problem with routestopped and i would
like to find a response (it''s possible that in shorewall-users i
don''t
get any response).

When i try to start routestopped doesn''t works, and if I set, for
example, "imap.gmail.com" in routestopped, no matter what i do, the
firewall won''t start.

So, with "shorewall restart" it works, but i don''t know if it
use
routestopped or not (if close any connections or not).

Thank you very much, I appreciate your help, and sorry about posting in
developers mailing list.


-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer''s
challenge
Build the coolest Linux based applications with Moblin SDK & win great
prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/

dt wrote:
> Sorry about that, but i have a problem with routestopped and i would
> like to find a response (it''s possible that in shorewall-users i
don''t
> get any response).
Sir,

Shorewall is Open Source Software. No one makes a dime from it. All of
the people involved are volunteers who develop, document and support the
software in their spare time. All have other jobs not related to
Shorewall. So when you ask a question, do not expect an immediate
response -- if you require that kind of instant handholding for every
problem then I suggest that Open Source Software is not for you and that
you should instead use a commercial firewall; and be sure to get the
support option so that you can call any time with your questions.

-Tom
-- 
Tom Eastep        \ The ultimate result of shielding men from the
Shoreline,         \ effects of folly is to fill the world with fools.
Washington, USA     \                                 -Herbert Spencer
http://shorewall.net \________________________________________________



-------------------------------------------------------------------------
This SF.Net email is sponsored by the Moblin Your Move Developer''s
challenge
Build the coolest Linux based applications with Moblin SDK & win great
prizes
Grand prize is a trip for two to an Open Source event anywhere in the world
http://moblin-contest.org/redirect.php?banner_id=100&url=/