sitedesign
April 25th, 2008, 10:10 AM
When I "shorewall clear" the server works as a bridge perfect.
I have set-up a server as a shorewall bridging firewall but get an error when starting:
Starting Shorewall....
Initializing...
Clearing Traffic Control/QOS
Deleting user chains...
Enabling Loopback and DNS Lookups
Creating Interface Chains...
Setting up SMURF control...
Setting up Black List...
Setting up ARP filtering...
Setting up Route Filtering...
Setting up Accept Source Routing...
IP Forwarding Enabled
Setting up SYN Flood Protection...
Setting up Rules...
Setting up Actions...
Creating action chain Drop
Creating action chain Reject
Creating action chain dropBcast
Creating action chain dropInvalid
Creating action chain dropNotSyn
Applying Policies...
Activating Rules...
iptables: Invalid argument
ERROR: Command "/sbin/iptables -A OUTPUT -o br0 -j br0_out" Failed
My shorewall interfaces file:
- br0 detect routefilter
My shorewall hosts file:
#ZONE HOST(S) OPTIONS
net br0:eth0
loc br0:eth1
My shorewall zones file:
fw firewall
net ipv4
loc ipv4
My shorewall conf file has bridging enabled
My network interfaces file:
auto br0
iface br0 inet static
address my public IP
network my public network
netmask 255.255.255.192
gateway my public gateway
pre-up ifconfig eth0 down
pre-up ifconfig eth1 down
pre-up brctl addbr br0
pre-up brctl addif br0 eth0
pre-up brctl addif br0 eth1
pre-up ifconfig eth0 0.0.0.0
pre-up /usr/sbin/ethtool -s eth0 speed 10 duplex full autoneg off
pre-up ifconfig eth1 0.0.0.0
pre-up /usr/sbin/ethtool -s eth1 speed 10 duplex full autoneg off
post-down ifconfig eth1 down
post-down ifconfig eth0 down
post-down ifconfig br0 down
post-down brctl delif br0 eth1
post-down brctl delif br0 eth0
post-down brctl delbr br0
Any help would be much appreciated.
Regards Peter King
I have set-up a server as a shorewall bridging firewall but get an error when starting:
Starting Shorewall....
Initializing...
Clearing Traffic Control/QOS
Deleting user chains...
Enabling Loopback and DNS Lookups
Creating Interface Chains...
Setting up SMURF control...
Setting up Black List...
Setting up ARP filtering...
Setting up Route Filtering...
Setting up Accept Source Routing...
IP Forwarding Enabled
Setting up SYN Flood Protection...
Setting up Rules...
Setting up Actions...
Creating action chain Drop
Creating action chain Reject
Creating action chain dropBcast
Creating action chain dropInvalid
Creating action chain dropNotSyn
Applying Policies...
Activating Rules...
iptables: Invalid argument
ERROR: Command "/sbin/iptables -A OUTPUT -o br0 -j br0_out" Failed
My shorewall interfaces file:
- br0 detect routefilter
My shorewall hosts file:
#ZONE HOST(S) OPTIONS
net br0:eth0
loc br0:eth1
My shorewall zones file:
fw firewall
net ipv4
loc ipv4
My shorewall conf file has bridging enabled
My network interfaces file:
auto br0
iface br0 inet static
address my public IP
network my public network
netmask 255.255.255.192
gateway my public gateway
pre-up ifconfig eth0 down
pre-up ifconfig eth1 down
pre-up brctl addbr br0
pre-up brctl addif br0 eth0
pre-up brctl addif br0 eth1
pre-up ifconfig eth0 0.0.0.0
pre-up /usr/sbin/ethtool -s eth0 speed 10 duplex full autoneg off
pre-up ifconfig eth1 0.0.0.0
pre-up /usr/sbin/ethtool -s eth1 speed 10 duplex full autoneg off
post-down ifconfig eth1 down
post-down ifconfig eth0 down
post-down ifconfig br0 down
post-down brctl delif br0 eth1
post-down brctl delif br0 eth0
post-down brctl delbr br0
Any help would be much appreciated.
Regards Peter King