Roberto,
Yes, I have the original VM I upgraded from. A second upgrade to Wheezy
produced identical results.
I isolated the problem to the option CONFIG_PATH in shorewall.conf. Due
to the age of my config file (probably dating back to Woody?) that
option did not exist. If I copy the value from shorewall.conf.dpkg-dist...
CONFIG_PATH="${CONFDIR}/shorewall:${SHAREDIR}/shorewall"
...then "shorewall check" and "shorewall start" work as expected.
According to the man page, the default value of CONFIG_PATH is
determined by /usr/share/shorewall/configpath. The value in that file on
my system is...
CONFIG_PATH=${CONFDIR}:${SHAREDIR}/shorewall
In that file, shouldn't the ${CONFDIR} be ${CONFDIR}/shorewall instead?
Thanks,
Scott
On 9/13/2012 22:12, Roberto C. Sánchez wrote:
package shorewall
tags 686909 + unreproducible
thanks
Hi Scott,
I have checked with upstream, and they have tried this exact upgrade on
a test system without encountering any issue. I have not had an
opportunity to set up a suitable test system and try it for myself.
Have you tried to see if you can reproduce the problem? Did you happen
to retain a copy of your /etc/shorewall directory from prior to the
upgrade?
Regards,
-Roberto
On Fri, Sep 07, 2012 at 12:43:57AM -0400, Scott Barnes wrote:
Package: shorewall
Version: 4.5.5.3-1
Severity: important
Dear Maintainer,
After upgrading my system from Squeeze (Shorewall 4.4.11.6),
Shorewall seems to be unable to locate its configuration file.
Either "shorewall check" or "shorewall start" results in:
ERROR: /etc/shorewall.conf does not exist!
That file is under /etc/shorewall as it always has been. Any ideas
why this error is occurring?
Thanks,
Scott Barnes
-- System Information:
Debian Release: wheezy/sid
APT prefers testing
APT policy: (500, 'testing')
Architecture: amd64 (x86_64)
Kernel: Linux 3.2.0-3-amd64 (SMP w/1 CPU core)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages shorewall depends on:
ii bc 1.06.95-2+b1
ii debconf [debconf-2.0] 1.5.46
ii iproute 20120521-3
ii iptables 1.4.14-3
ii perl-modules 5.14.2-12
ii shorewall-core 4.5.5.3-1
shorewall recommends no packages.
Versions of packages shorewall suggests:
ii linux-image-2.6.32-5-amd64 [linux-image] 2.6.32-45
ii linux-image-3.2.0-3-amd64 [linux-image] 3.2.23-1
ii make 3.81-8.2
ii shorewall-doc 4.5.5-1
-- Configuration Files:
/etc/default/shorewall changed:
startup=1
OPTIONS=""
STARTOPTIONS=""
RESTARTOPTIONS=""
INITLOG=/dev/null
SAFESTOP=1
/etc/shorewall/params changed:
LOG=ULOG
/etc/shorewall/shorewall.conf changed:
LOGFILE=/var/log/shorewall
LOGFORMAT="Shorewall:%s:%s:"
LOGRATE=
LOGBURST=
BLACKLIST_LOGLEVEL=ULOG
MACLIST_LOG_LEVEL=ULOG
TCP_FLAGS_LOG_LEVEL=ULOG
PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin
SHOREWALL_SHELL=/bin/sh
SUBSYSLOCK=""
MODULESDIR=
IP_FORWARDING=On
ADD_IP_ALIASES=Yes
ADD_SNAT_ALIASES=No
TC_ENABLED=No
CLEAR_TC=Yes
MARK_IN_FORWARD_CHAIN=No
CLAMPMSS=No
ROUTE_FILTER=Yes
DETECT_DNAT_IPADDRS=No
MUTEX_TIMEOUT=60
ADMINISABSENTMINDED=Yes
BLACKLISTNEWONLY=Yes
BLACKLIST_DISPOSITION=DROP
MACLIST_DISPOSITION=REJECT
TCP_FLAGS_DISPOSITION=DROP
DISABLE_IPV6=yes
STARTUP_ENABLED=yes
LOGALLNEW=
SFILTER_LOG_LEVEL=ULOG
SMURF_LOG_LEVEL=ULOG
TCP_FLAGS_LOG_LEVEL=ULOG
-- debconf information:
shorewall/invalid_config:
shorewall/dont_restart:
shorewall/major_release:
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]
