Re: [Partial Solution] Re: Can't run shorewall with kernel 2.6.20.2

To: debian-user@lists.debian.org
Subject: Re: [Partial Solution] Re: Can't run shorewall with kernel 2.6.20.2
From: Micha Feigin <michf@post.tau.ac.il>
Date: Thu, 15 Mar 2007 22:53:45 +0200
Message-id: <[🔎] 20070315225345.14bac89a@litshi.luna.local>
In-reply-to: <[🔎] 20070315125107.GA18346@miami.connexer.com>
References: <[🔎] 20070310050034.40f172e9@litshi.luna.local> <[🔎] 20070310034630.GA2536@santiago.connexer.com> <[🔎] 20070311002109.16e83820@litshi.luna.local> <[🔎] 20070310230500.GH588@miami.connexer.com> <[🔎] 20070312090006.486e32cb@litshi.luna.local> <[🔎] 20070312225929.GA640@santiago.connexer.com> <[🔎] 20070313102804.0a805a72@litshi.luna.local> <[🔎] 20070315125107.GA18346@miami.connexer.com>

On Thu, 15 Mar 2007 08:51:07 -0400
"Roberto C. Sanchez" <roberto@connexer.com> wrote:

> On Tue, Mar 13, 2007 at 10:28:04AM +0200, Micha Feigin wrote:
> > On Mon, 12 Mar 2007 18:59:29 -0400
> > "Roberto C. Sanchez" <roberto@connexer.com> wrote:
> > 
> > > On Mon, Mar 12, 2007 at 09:00:06AM +0200, Micha Feigin wrote:
> > > > 
> > > > That helped a bit. It appears that shorewall requires Ipv4 connection
> > > > tracking enabled. Now shorewall comes up and seems to work except that
> > > > dns requests from the firewall fail when it is enabled. (I can ping out
> > > > by address but not by name)
> > > > 
> > > 
> > > What are the contents of /etc/shorewall/policy?
> > > 
> > 
> > $FW	all	ACCEPT	-
> > net	$FW	DROP	info
> > all	all	DROP	info
> > 
> > I then add specific incoming ports in /etc/shorewall/rules
> > 
> And when you say "DNS requests from the firewall" you mean for actual
> applications running on the firewall box itself?  Not something else
> behind the firewall?
> 

The firewall is running on a laptop connecting to a local gateway.

The was a problem pinging from the laptop to the gateway when the firewall was
up. I tried several reboots which didn't solve the problem, but seems to began
working now without me noticing, so I think I will accept the situation and not
try to fix what's not broken

Thanks for the help

> Regards,
> 
> -Roberto
>

Reply to:

References:
- Can't run shorewall with kernel 2.6.20.2
  - From: Micha Feigin <michf@post.tau.ac.il>
- Re: Can't run shorewall with kernel 2.6.20.2
  - From: "Roberto C. Sanchez" <roberto@connexer.com>
- Re: Can't run shorewall with kernel 2.6.20.2
  - From: Micha Feigin <michf@post.tau.ac.il>
- Re: Can't run shorewall with kernel 2.6.20.2
  - From: "Roberto C. Sanchez" <roberto@connexer.com>
- [Partial Solution] Re: Can't run shorewall with kernel 2.6.20.2
  - From: Micha Feigin <michf@post.tau.ac.il>
- Re: [Partial Solution] Re: Can't run shorewall with kernel 2.6.20.2
  - From: "Roberto C. Sanchez" <roberto@connexer.com>
- Re: [Partial Solution] Re: Can't run shorewall with kernel 2.6.20.2
  - From: Micha Feigin <michf@post.tau.ac.il>
- Re: [Partial Solution] Re: Can't run shorewall with kernel 2.6.20.2
  - From: "Roberto C. Sanchez" <roberto@connexer.com>

Prev by Date: Re: Wine
Next by Date: Re: Sirius radio streaming?
Previous by thread: Re: [Partial Solution] Re: Can't run shorewall with kernel 2.6.20.2
Next by thread: Can't run shorwall with kernel 2.6.20.2
Index(es):
- Date
- Thread