I promise I have read and searched and cannot find where I missed the boat. I know somewhere I failed to see what I need to do but I can''t find it. Using 4.2.22 with patch. I have 2 blacklists (nets and hosts) both have src,dst --set option depreciated, please use -match-set I get this 4 times every time I start or restore Shorewall. I see the code written in the .iptables-restore-input file What did I miss? --john <http://www.columbuscontainer.com/> John R. Hill Director Of Technologies 812-314-8920 option #3 ------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA The must-attend event for mobile developers. Connect with experts. Get tools for creating Super Apps. See the latest technologies. Sessions, hands-on labs, demos & much more. Register early & save! http://p.sf.net/sfu/rim-blackberry-1
On Tue, 2011-08-02 at 14:11 -0400, Hill, John wrote:> I promise I have read and searched and cannot find where I missed the > boat. I know somewhere I failed to see what I need to do but I can’t > find it.> Using 4.2.22 with patch.4.4.22 maybe?> > I have 2 blacklists (nets and hosts) both have src,dst > > > > --set option depreciated, please use –match-setIt''s a harmless warning out of iptables-restore. There is nothing that you can do to eliminate it. Which kernel version are you running? Thanks, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA The must-attend event for mobile developers. Connect with experts. Get tools for creating Super Apps. See the latest technologies. Sessions, hands-on labs, demos & much more. Register early & save! http://p.sf.net/sfu/rim-blackberry-1
Yes 4.4.22. You don't miss a thing. Lenny 2.6.26-amd64 Iptables v1.4.9.1 I noticed it is correct in restore-iptables. But incorrect in .iptables-restore-input? I have verified that my blacklist ipsets is working. Thanks John R. Hill Director Of Technologies 812-314-8920 option #3 -----Original Message----- From: Tom Eastep [mailto:teastep@shorewall.net] Sent: Tuesday, August 02, 2011 2:38 PM To: Shorewall Users Subject: Re: [Shorewall-users] Shorewall restore message On Tue, 2011-08-02 at 14:11 -0400, Hill, John wrote:> I promise I have read and searched and cannot find where I missed the > boat. I know somewhere I failed to see what I need to do but I can’t > find it.> Using 4.2.22 with patch.4.4.22 maybe?> > I have 2 blacklists (nets and hosts) both have src,dst > > > > --set option depreciated, please use –match-setIt's a harmless warning out of iptables-restore. There is nothing that you can do to eliminate it. Which kernel version are you running? Thanks, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA The must-attend event for mobile developers. Connect with experts. Get tools for creating Super Apps. See the latest technologies. Sessions, hands-on labs, demos & much more. Register early & save! http://p.sf.net/sfu/rim-blackberry-1 _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
On Tue, 2011-08-02 at 11:37 -0700, Tom Eastep wrote:> On Tue, 2011-08-02 at 14:11 -0400, Hill, John wrote: > > I promise I have read and searched and cannot find where I missed the > > boat. I know somewhere I failed to see what I need to do but I can’t > > find it. > > > Using 4.2.22 with patch. > > 4.4.22 maybe? > > > > > I have 2 blacklists (nets and hosts) both have src,dst > > > > > > > > --set option depreciated, please use –match-set > > It''s a harmless warning out of iptables-restore. There is nothing that > you can do to eliminate it. > > Which kernel version are you running?Nevermind; I''ve reproduced the problem. You can suppress the warning (and make start/restart much faster) by setting LOAD_MODULES_ONLY=Yes in shorewall.conf. This will be fixed in 4.4.22.1. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA The must-attend event for mobile developers. Connect with experts. Get tools for creating Super Apps. See the latest technologies. Sessions, hands-on labs, demos & much more. Register early & save! http://p.sf.net/sfu/rim-blackberry-1
Will do. Thanks --john John R. Hill Director Of Technologies 812-314-8920 option #3 -----Original Message----- From: Tom Eastep [mailto:teastep@shorewall.net] Sent: Tuesday, August 02, 2011 2:52 PM To: Shorewall Users Subject: Re: [Shorewall-users] Shorewall restore message On Tue, 2011-08-02 at 11:37 -0700, Tom Eastep wrote:> On Tue, 2011-08-02 at 14:11 -0400, Hill, John wrote: > > I promise I have read and searched and cannot find where I missed > > the boat. I know somewhere I failed to see what I need to do but I > > can’t find it. > > > Using 4.2.22 with patch. > > 4.4.22 maybe? > > > > > I have 2 blacklists (nets and hosts) both have src,dst > > > > > > > > --set option depreciated, please use –match-set > > It's a harmless warning out of iptables-restore. There is nothing that > you can do to eliminate it. > > Which kernel version are you running?Nevermind; I've reproduced the problem. You can suppress the warning (and make start/restart much faster) by setting LOAD_MODULES_ONLY=Yes in shorewall.conf. This will be fixed in 4.4.22.1. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA The must-attend event for mobile developers. Connect with experts. Get tools for creating Super Apps. See the latest technologies. Sessions, hands-on labs, demos & much more. Register early & save! http://p.sf.net/sfu/rim-blackberry-1 _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
> > > > You can suppress the warning (and make start/restart much faster) by setting LOAD_MODULES_ONLY=Yes in shorewall.conf. >That should be LOAD_HELPERS_ONLY. - Tom ------------------------------------------------------------------------------ BlackBerry® DevCon Americas, Oct. 18-20, San Francisco, CA The must-attend event for mobile developers. Connect with experts. Get tools for creating Super Apps. See the latest technologies. Sessions, hands-on labs, demos & much more. Register early & save! http://p.sf.net/sfu/rim-blackberry-1