| 1 |
Jeff Cranmer wrote: |
| 2 |
|
| 3 |
>I have recently updated shorewall on my 2.4 gentoo OS |
| 4 |
>I now get the following error: |
| 5 |
> |
| 6 |
>/usr/share/shorewall/firewall: line 254: exists_:_frwd=Yes: command not |
| 7 |
>found |
| 8 |
>Warning: wierd character in interface `$' (No aliases, :, ! or *). |
| 9 |
>iptables v1.2.11: Couldn't load match |
| 10 |
>`policy':/lib/iptables/libipt_policy.so: cannot open shared object file: |
| 11 |
>No such file or directory |
| 12 |
> |
| 13 |
>Try `iptables -h' or 'iptables --help' for more information. |
| 14 |
> ERROR: Command "/sbin/iptables -A ppp0_fwd -s 0.0.0.0/0 -o $ -d |
| 15 |
>_hosts -m policy --pol ipsec --dir out $:_ipsec_options |
| 16 |
>$:_ipsec_out_options -j :_policychain" Failed |
| 17 |
>Processing /etc/shorewall/stop ... |
| 18 |
>IP Forwarding Enabled |
| 19 |
>Processing /etc/shorewall/stopped ... |
| 20 |
>Terminated |
| 21 |
> |
| 22 |
>It works correctly on my 2.6 Gentoo OS. Any suggestions on how to |
| 23 |
>repair gratefully received. |
| 24 |
> |
| 25 |
>Thanks |
| 26 |
> |
| 27 |
>Jeff |
| 28 |
> |
| 29 |
> |
| 30 |
> |
| 31 |
> |
| 32 |
Hi, |
| 33 |
Works OK on a 2.6 system, too. It depends only on: iptables, iproute2 |
| 34 |
and virtual/libc (glibc). |
| 35 |
Some suggestions: |
| 36 |
1.try "revdep-rebuild -pv" later w/o "p" to check if something needs to |
| 37 |
be rebuild (suspect 'iptables' here); |
| 38 |
2.Check for "required options" (see shorewall docs) in the kernel config |
| 39 |
(maybe something was changed); |
| 40 |
3.Check the five 'basic' ;) config files: |
| 41 |
/etc/shorewall/shorewall.conf&policy&interfaces&zones&rules. |
| 42 |
HTH. Rumen |
Archives