similar to: Interaction of Shorewall and Shorewall6 with a Teredo relay?

Hey all, Just a sanity check, but should the shorecap script in shorewall6-lite be sourcing /usr/share/shorewall6-lite/lib.base rather than /usr/share/shorewall-lite/lib.base like it does currently? In fact shouldn''t there be a general s/shorewall-lite/shorewall6-lite/ in shorecap in shorewall6-lite? Maybe there is more of that lurking about as well. Also, the first line of the

Dear all, I have configured both shorewall and shorewall6 on my firewall. Shorewall is using ULOG as logging target and since that did not seem to work I tried using NFLOG in shorewall6. However, nothing is logged in the /var/log files. Three questions: - What am I doing wrong? I just use LOG=NFLOG in the params file. - Can I use NFLOG for shorewall too? - Do I need ulogd when setting the

Hi, I have servers where shorewall6 won''t reject nor log: # cat /etc/shorewall6/zones fw firewall net ipv6 # cat /etc/shorewall6/interfaces net eth1 tcpflags (I also tried without "tcpflags", but no changes) # cat /etc/shorewall6/policy $FW all ACCEPT all all REJECT info # cat /etc/shorewall6/rules SECTION NEW (for testing, I removed all the rules) I am testing from

I want to test shorewall6 in a scenario with several virtual machines. Each virtual machine has the interface eth0. With IPv4, I would assign an IP-alias to eth0:1 and so would have eth0 and eth0:1 as interfaces for shorewall6. How is this done with IPv6? Viele Grüße Andreas Rittershofer -- ------------------------------------------------------------------------------ Live Security

Hello, shorewall6 seem to have problems duplicating the main routing table. shorewall6 tries to add the fe80::/64 route of every ipv6 configured interface to routing table 1. The first route applies but the other ones not. If i try to add the routes manually to routing table 1 i have to add the first fe80::/64 route and append not add the other ones. does not work: ip -6 route add table 1

Miredo is run as a server from the command line: /usr/sbin/miredo The man page says the signal SIGTERM stops the server. How do I send SIGTERM to the server? Or SIGHUP, as I want to make a change to the config file. And once I get this as I want it, how do I run it at system boot?

Hey, I have a setup that has one machine communicating to a server using UDP over IPv6. For specifics, it is using collectd with a boosted MaxPacketSize in the network config. What this means is there is some IP fragmentation happening, and that is getting REJECTed. My policy is to REJECT, and I have an ALLOW for the particular communication I want. What I''m getting in my logs is

Beta 1 is now available for testing. One of the problems I''ve had with the Shorewall products is trying to keep them all in sync. There have been two copies of each shell library and four CLI programs. To simplify maintenance, I have collapsed each of the library pairs into a single library and have reduced the number of CLI programs from four to two (one for the

Beta 1 is now available for testing. One of the problems I''ve had with the Shorewall products is trying to keep them all in sync. There have been two copies of each shell library and four CLI programs. To simplify maintenance, I have collapsed each of the library pairs into a single library and have reduced the number of CLI programs from four to two (one for the

I''d like to ask for clarification on the upgrade procedure using tarballs. In the past, with version 4.4, I have downloaded shorewall-4.4.x.y.tar.bz2 and shorewall6-4.4.x.y.tar.bz2, extracted each, and executed ''install.sh -s'' in each directory. Now there is a new package shorewall-core-4.5.x.y.tar.bz2. As I understand it, with version 4.5, this core package needs to be

I have some weird error with one of my samba installation. When modifying samba password using smbpasswd, samba seems trying to add same attribute (instead of delete and add again), pls see the "MOD" from log file (from different domain) : UNSUCESSFULL Mar 15 17:10:53 hurricane slapd[27056]: conn=29489 op=1 MOD dn="uid=pwreka,ou=people,ou=purwakarta,dc=indorama,dc=com" Mar 15

Thank you for your response. Yes, I know something changed, hence the smiley. I have looked at the code (I was able to build it under the new windows bash). It turns out that the error was on a udp receive, not a tcp connection. Didn't know you would get this error. Anyhow near the location of the error there was a remark about IPv6. I hadn't looked at that yet. So I turned IPv6 off at

hello, I have a test setup with 2 asterisk servers, each having a one snom 100 via sip using it. I`m experimenting on how trunking between them would work. I have them setup for RSA authentication which I plan to use in the future. So I`ve setup the keys and servers seem authenticate to each other. One is named phila and other hurricane. Here is what I see on phila: -- Registered

------- Forwarded Message Return-Path: hurricane-list-request@redhat.com Return-Path: <hurricane-list-request@redhat.com> Received: from innovace.aquasoft.com.au (jht@innovace.aquasoft.com.au [192.245.14.12]) by innovace.aquasoft.com.au (8.8.7/8.8.7) with ESMTP id SAA00772 for <jht@innovace.aquasoft.com.au>; Sat, 20 Dec 1997 18:49:03 +1100 Received: from aqua.aquasoft.com.au by

In working through an IPv6/TPROXY issue I had, I believe I found a documentation bug: http://www.shorewall.net/manpages6/shorewall6-tcrules.html In the ACTION section, for part 12. SAME: The documentation lists: #ACTION SOURCE DEST PROTO DEST # PORT(S) SAME:P 192.168.1.0/24 0.0.0.0/0 tcp

I'm completely confused here and I'm hoping someone here has a setup they're willing to share, or help me configure things on my end. My connectivity is through Comcast, who unfortunately, does not offer ipv6 in my area. My connection goes like this: Comcast -> Motorola Surfboard Cable Router -> CentOS 6.5 server The CentOS server is multi-homed and manages the internal

Hello, I am working with a database system from which I can retrieve these kinds of user defined fields formed as XML ... <udf:field unit="uM" type="Numeric" name="facs.Stain final concentration">5</udf:field> You can see in the above example that "field" is defined in the namespace "udf", but that the "udf" namespace is

I have two systems on different subnets that are to be members of the same domain; nether are the domain master. I am running RedHat Enterprise 3 Update 2 on each. Both are running samba-common-3.0.2-6.3E samba-client-3.0.2-6.3E samba-3.0.2-6.3E Both are using the smb.conf except with changes on their netbios name and interfaces to reflect their identies. One runs with no problem s.

Hi, could you please assist me with this problem? PROBLEM: Samba-1.9.17p4-3.i386 I CAN map Linux drives via Samba successfully from WINNT 4.0, but I can't see my samba server 'hurricane' in Network Neighborhood'. ACTIONS: diagnosis.txt results Test 1 - passed Test 2 - passed Test 3 - passed Test 4 - passed Test 5 - failed (nmblookup -B hercules '*' message: sending

Tom In Shorewall6 4.4.27 the following proxyndp entry: 2001:4d48:ad51:24::f3 eth2 eth0 no no does not add the required route. The code produced in /var/lib/shorewall6/.restart is: qt $IP -6 route del 2001:4d48:ad51:24::f3/128 dev eth2 run_ip route add 2001:4d48:ad51:24::f3/128 dev eth2 Splitting the line into 2 separate lines: qt $IP -6 route del 2001:4d48:ad51:24::f3/128 dev eth2