On 2013-03-20 11:24, Jerome BENOIT wrote: | I think that 30 seconds is long enough to make a copy of the folder, | and then bash debugging techniques can be used. As a matter of | fact, it is not even necessary to make a copy if some basic | techniques are used: at the beginning of firehol.conf you can add | | set -x | set -v
I think this is the best approach would be to add these to the manual page. See attached patch to be included in debian/patches directory. Thanks, Jari
>From 6846337332aa00fc6927ca405e3f1e384e5b4bea Mon Sep 17 00:00:00 2001 From: Jari Aalto <[email protected]> Date: Fri, 19 Apr 2013 10:19:46 +0300 Subject: [PATCH] man/firehol.1: (try command): Offer more debugging ideas (Closes: #703341) Organization: Private Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit Signed-off-by: Jari Aalto <[email protected]> --- man/firehol.1 | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/man/firehol.1 b/man/firehol.1 index c5e8bfb..0132641 100644 --- a/man/firehol.1 +++ b/man/firehol.1 @@ -64,7 +64,9 @@ to be found in \fI/etc/firehol/firehol.conf\fR. .IX Item "try" Activates the firewall, but waits until the user types the word commit. If this word is not typed within 30 seconds, the previous firewall is -restored. +restored. NOTE: to improve debugging, you can add standard shell commands +\fBset -x\fP and \fBset -v\fP at the beginning of +/etc/firehol/firehol.conf file. .IP "stop" 4 .IX Item "stop" Stops a running \fBiptables\fR firewall by running \f(CW\*(C`/etc/init.d/iptables stop\*(C'\fR. -- 1.7.10.4
