1 |
Jeff Cranmer wrote: |
2 |
|
3 |
>I have recently updated shorewall on my 2.4 gentoo OS |
4 |
>I now get the following error: |
5 |
> |
6 |
>/usr/share/shorewall/firewall: line 254: exists_:_frwd=Yes: command not |
7 |
>found |
8 |
>Warning: wierd character in interface `$' (No aliases, :, ! or *). |
9 |
>iptables v1.2.11: Couldn't load match |
10 |
>`policy':/lib/iptables/libipt_policy.so: cannot open shared object file: |
11 |
>No such file or directory |
12 |
> |
13 |
>Try `iptables -h' or 'iptables --help' for more information. |
14 |
> ERROR: Command "/sbin/iptables -A ppp0_fwd -s 0.0.0.0/0 -o $ -d |
15 |
>_hosts -m policy --pol ipsec --dir out $:_ipsec_options |
16 |
>$:_ipsec_out_options -j :_policychain" Failed |
17 |
>Processing /etc/shorewall/stop ... |
18 |
>IP Forwarding Enabled |
19 |
>Processing /etc/shorewall/stopped ... |
20 |
>Terminated |
21 |
> |
22 |
>It works correctly on my 2.6 Gentoo OS. Any suggestions on how to |
23 |
>repair gratefully received. |
24 |
> |
25 |
>Thanks |
26 |
> |
27 |
>Jeff |
28 |
> |
29 |
> |
30 |
> |
31 |
> |
32 |
Hi, |
33 |
Works OK on a 2.6 system, too. It depends only on: iptables, iproute2 |
34 |
and virtual/libc (glibc). |
35 |
Some suggestions: |
36 |
1.try "revdep-rebuild -pv" later w/o "p" to check if something needs to |
37 |
be rebuild (suspect 'iptables' here); |
38 |
2.Check for "required options" (see shorewall docs) in the kernel config |
39 |
(maybe something was changed); |
40 |
3.Check the five 'basic' ;) config files: |
41 |
/etc/shorewall/shorewall.conf&policy&interfaces&zones&rules. |
42 |
HTH. Rumen |