Re: [Partial Solution] Re: Can't run shorewall with kernel 2.6.20.2
On Mon, 12 Mar 2007 18:59:29 -0400
"Roberto C. Sanchez" <roberto@connexer.com> wrote:
> On Mon, Mar 12, 2007 at 09:00:06AM +0200, Micha Feigin wrote:
> >
> > That helped a bit. It appears that shorewall requires Ipv4 connection
> > tracking enabled. Now shorewall comes up and seems to work except that dns
> > requests from the firewall fail when it is enabled. (I can ping out by
> > address but not by name)
> >
>
> What are the contents of /etc/shorewall/policy?
>
$FW all ACCEPT -
net $FW DROP info
all all DROP info
I then add specific incoming ports in /etc/shorewall/rules
> Regards,
>
> -Roberto
Reply to: