PGNd
2014-Aug-08 04:36 UTC
Use of physical= option with provider interface causes compile "ERROR: A provider interface must have at least one associated zone"
Working on a multiISP install of shorewall version 4.6.2.3 Configs include /zones fw firewall net ipv4 prov2 ipv4 lan ipv4 lan2 ipv4 lan3 ipv4 /hosts lan INTIF:10.1.20.0/24 lan2 INTIF:10.2.20.0/24 lan3 INTIF:10.3.20.0/24 /providers prov1 1 1 main EXT_IF detect track,balance INTIF prov2 2 2 main tun1 192.168.1.1 track,fallback INTIF If /interfaces ?FORMAT 2 net EXTIF physical=eth0 - INTIF physical=eth1 prov2 tun0 optional Compile, install & function are all ok. If, instead /interfaces ?FORMAT 2 net EXTIF physical=eth0 - INTIF physical=eth1 - prov2 tun1 optional + prov2 VPNIF physical=tun1,optional Compile fails Compiling /opt/etc/shorewall/providers... Use of uninitialized value $physical in pattern match (m//) at /usr/lib/perl5/vendor_perl/5.18.1/Shorewall/Providers.pm line 463, <$currentfile> line 2. ERROR: A provider interface must have at least one associated zone /opt/etc/shorewall/providers (line 2) (1) Is the form prov2 VPNIF physical=tun1,optional in /interfaces permitted? (2) If "yes", is the ERROR a config problem on my end, or a bug? ------------------------------------------------------------------------------ Want fast and easy access to all the code in your enterprise? Index and search up to 200,000 lines of code with a free copy of Black Duck Code Sight - the same software that powers the world's largest code search on Ohloh, the Black Duck Open Hub! Try it now. http://p.sf.net/sfu/bds