I run fedora-7-i386 and have installed vuurmuur 0.5.73-1. 21:02:35 : PID 4857 : vuurmuur_conf : search_service_in_hash: FIXME: protocol '2' not yet supported.Īt least just for display name! It should just display 'igmp' in the GUI, but instead it fills up debug.log printing the above trace once a second! I think this has to do that the init_config function does not initiate the helpfile_location.Īnd since config_menu is called before the helpfile_location is initiated, it can not find the help file. It tries to use "/vuurmuur.hlp" instead of "/usr/share/vuurmuur/help/vuurmuur/vuurmuur.hlp". This works, but when asking for help, it displays that the help file can not be found. Vuurmuur_conf will prompt the user to configure the system. When you start vuurmuur_conf when no general vuurmuur config file is available. Help not available in vuurmuur_conf when general configuration file does not exist. 18:25:08 : PID 3502 : vuurmuur : Error (-1): applying changes failed. 18:25:08 : PID 3502 : vuurmuur : Error (-1): creating rules failed. 18:25:08 : PID 3502 : vuurmuur : Error (-1): loading ruleset result: 'Try `iptables-restore -h' or 'iptables-restore -help' for more information.'. 18:25:08 : PID 3502 : vuurmuur : Error (-1): loading ruleset result: 'Error occurred at line: 42'. 18:25:08 : PID 3502 : vuurmuur : Error (-1): loading ruleset result: 'iptables-restore v1.4.14: Bad ctstate "-m"'. 18:25:08 : PID 3502 : vuurmuur : Error (-1): rulesetfile will be stored as '/tmp/vuurmuur-wgTEpL.failed' (in: load_ruleset_ipv4:1717). 18:25:08 : PID 3502 : vuurmuur : Error (-1): loading the ruleset failed (in: ruleset_load_ruleset:1228). 18:25:08 : PID 3502 : vuurmuur : Error (-1): command '/sbin/iptables-restore -counters -noflush > /tmp/vuurmuur-load-result-lCvVfX' failed. I solved the problem editing the helper value in the ftp services rule for one empty value.įor more info, show the follow extracts of error log, and the problematic iptables rule. Using default rule for ftp services, when apply the rule change, vuurmuur show a warning message, and it crash completely when restart the service. Iptables-restore v1.4.14: Bad ctstate "-m" # helper value ftp service This is the first of several ports I need to forward to another site (data center). I haven't got anti-spoofing enabled on the zones, so I think it's buggy. However, when running with -bash, this piece of code runs: Vuurmuur -bash enables /disables ip_forward and ip6_forward togetherĪFAIU from looking at the source, when you run vuurmuur normally, it enables ip_forward when ipv4 forwarding rules are present, and ip6_forward when ipv6 rules are present. Many times you forgot to declare the host and have to go back (time saving). When you are creating rules it would be nice if you can have a shortcut to enter zone+network and finally host without leave the rules window. Install these packages without verification ? y WARNING: The following packages cannot be authenticated! Investigate adding key signing to debian packages A new window would need to use colors for separating between networks and hosts. The current window is not very clear especially when many networks, hosts and groups are defined. Re-design host/group/net selection window at the rules
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |