Hello Matt,
I still do not understand this. But now it works after a restart of the
computer.
> The only thing that I can say is that you need to understand the Docker
> interfaces mechanism then you will be able to configure Shorewall.
> At this point, (1) is all I can do.
> 1) https://gist
On 9/3/2021 6:13 PM, Franz Holzinger wrote:
>
>
>
>
>>> Checking /etc/shorewall/interfaces...
>>> ERROR: Invalid Interface option (detect) /etc/shorewall/interfaces
>>> (line 11)
>>>
>>> line 11 is this:
>>> net wlp2s0 detect
>
>> For format 2, `detect' is not used anymore. Remove the 3 detec
>> Checking /etc/shorewall/interfaces...
>> ERROR: Invalid Interface option (detect) /etc/shorewall/interfaces
>> (line 11)
>>
>> line 11 is this:
>> net wlp2s0 detect
> For format 2, `detect' is not used anymore. Remove the 3 detect and see
> how it goes (keep the bridge).
This change make
>> Please check, it should probably be
>
>> ?FORMAT 2
>
>> Note the space!
>
> The output is:
>
>
> [root@franz-820 shorewall]# tail -n 7 interfaces
> ?FORMAT 2
> net wlp2s0 detect
> net wlp0s20f0u1 detect
> net enp0s31f6 detect
> dockdocker0 bridge
>
>
> [root@franz-8
> Please check, it should probably be
> ?FORMAT 2
> Note the space!
The output is:
[root@franz-820 shorewall]# tail -n 7 interfaces
?FORMAT 2
net wlp2s0 detect
net wlp0s20f0u1 detect
net enp0s31f6 detect
dockdocker0 bridge
[root@franz-820 shorewall]# shor
>
>> This assumes that the content of '/etc/shorewall' was not modified.
>
>> Please try this
>
>> $ tail -n 7 interfaces
>> ?FORMAT2
>> net wlp2s0 detect
>> net wlp0s20f0u1 detect
>> net enp0s31f6 detect
>> dock docker0 bridge
>> $ shorewall check && shorewall start
>
> The output is:
>
>
>
> [roo
> This assumes that the content of '/etc/shorewall' was not modified.
> Please try this
> $ tail -n 7 interfaces
> ?FORMAT2
> net wlp2s0 detect
> net wlp0s20f0u1 detect
> net enp0s31f6 detect
> dock docker0 bridge
> $ shorewall check && shorewall start
The output is:
[root@franz-820 shorewa
On 9/2/2021 4:00 PM, Franz Holzinger wrote:
>> What is the output of the below cmd:
>
>> $ host umgebung1.ddev.site
>
> no output is given
>
>> When SW is started, is it working with the below URI:
>
>> https://127.0.0.1:8443
> This gives not connection.
>
> If I stop the shorewall, then I get
> What is the output of the below cmd:
> $ host umgebung1.ddev.site
no output is given
> When SW is started, is it working with the below URI:
> https://127.0.0.1:8443
This gives not connection.
If I stop the shorewall, then I get the browser message:
"503: No ddev back-end site available.
Th
On 9/2/2021 9:05 AM, Franz Holzinger wrote:
>> If you are still not getting anywhere, please follow the instructions at
>> (2) followed by (3).
>
> sudo shorewall clear
>
> After this command is executed, the browser url
> https://umgebung1.ddev.site:8443/ works fine!
>
>
> LOGFILE=/var/log/me
> If you are still not getting anywhere, please follow the instructions at
> (2) followed by (3).
sudo shorewall clear
After this command is executed, the browser url
https://umgebung1.ddev.site:8443/ works fine!
LOGFILE=/var/log/messages
I am trying to connect from my local computer. Also th
> Clearly the traffic between interfaces (br-81fbb014aa75 and veth0bab8b8 is
> 'rejected.
> Are the containers on a bridge?
> It looks like the interfaces are not properly defined in the zones.
> You said that you used 'docker0' in your interfaces file.
The /etc/shorewall/zones is:
net i
On 9/1/2021 3:12 PM, Matt Darfeuille wrote:
> On 9/1/2021 11:40 AM, Matt Darfeuille wrote:
>> On 9/1/2021 10:55 AM, Franz Holzinger wrote:
> I have this policy file:
> fw net ACCEPT
> fw dock ACCEPT
> dock all ACCEPT
> net all DROP info
> all all REJECT info
>
>>>
G
On 9/1/2021 11:40 AM, Matt Darfeuille wrote:
> On 9/1/2021 10:55 AM, Franz Holzinger wrote:
I have this policy file:
fw net ACCEPT
fw dock ACCEPT
dock all ACCEPT
net all DROP info
all all REJECT info
>>
>>> Given the last policy, are you seeing anything in the log
On 9/1/2021 10:55 AM, Franz Holzinger wrote:
>>> I have this policy file:
>>> fw net ACCEPT
>>> fw dock ACCEPT
>>> dock all ACCEPT
>>> net all DROP info
>>> all all REJECT info
>>>
>
>> Given the last policy, are you seeing anything in the log (REJECT for
>> that port)?
> I get these logfile entri
>> I have this policy file:
>> fw net ACCEPT
>> fw dock ACCEPT
>> dock all ACCEPT
>> net all DROP info
>> all all REJECT info
>>
> Given the last policy, are you seeing anything in the log (REJECT for
> that port)?
I get these logfile entries for the DDEV url https://umgebung1.ddev.site:8443/:
Se
On 8/31/2021 8:34 PM, Franz Holzinger wrote:
>
>
>
>
>
>> In the extracted rules files, port '32769' is not present you probably
>> should allow traffic to that port.
>> I couldn't read the policy file so if you have a policy that does that
>> you can ignore this.
> I have this policy file:
>
> In the extracted rules files, port '32769' is not present you probably
> should allow traffic to that port.
> I couldn't read the policy file so if you have a policy that does that
> you can ignore this.
I have this policy file:
fw net ACCEPT
fw dockACCEPT
dockall
On 8/30/2021 1:40 PM, Franz Holzinger wrote:
>
>
>
>> Sorry the forgotten URL is below ('?FORMAT2'):
>
>> https://shorewall.org/manpages/shorewall-interfaces.html
>
>
>> What do you have in the rules and policy files?
>
> see the attached files rules.tar.gz and policy.gz
>
In the extracted
> Sorry the forgotten URL is below ('?FORMAT2'):
> https://shorewall.org/manpages/shorewall-interfaces.html
> What do you have in the rules and policy files?
see the attached files rules.tar.gz and policy.gz
rules.tar.gz
Description: rules.tar.gz
policy.gz
Description: policy.gz
__
On 8/30/2021 8:36 AM, Franz Holzinger wrote:
>
>
>
>
> ;
> This is the line I have added to the interfaces:
>
> dock docker0 bridge #Allow ICC (bridge implies routeback=1)
>
>
> What must I insert into the interfaces file in order it will work?
>
>
>>>
>>>
;
This is the line I have added to the interfaces:
dock docker0 bridge #Allow ICC (bridge implies routeback=1)
What must I insert into the interfaces file in order it will work?
>>
>>> The line used is "FORMAT 2" but the msg suggests that you are
On 8/28/2021 10:29 PM, Franz Holzinger wrote:
>>>
>>> ;
>>> This is the line I have added to the interfaces:
>>>
>>> dock docker0 bridge #Allow ICC (bridge implies routeback=1)
>>>
>>>
>>> What must I insert into the interfaces file in order it will work?
>>>
>>>
>
>> The line used is "FORMAT 2" b
>>
>>;
>> This is the line I have added to the interfaces:
>>
>> dock docker0 bridge #Allow ICC (bridge implies routeback=1)
>>
>>
> >What must I insert into the interfaces file in order it will work?
>>
>>
>The line used is "FORMAT 2" but the msg suggests that you are using
>"FORMAT 1".
How sho
On 8/28/2021 1:15 PM, Franz Holzinger wrote:
>
>
>
>
> Hello,
>
> I am using a Docker environment which has been started successfully by "ddev
> restart".
>
> Your project can be reached at https://umgebung1.ddev.site:8443
> https://127.0.0.1:32769
>
> The url https://umgebung1.ddev.sit
25 matches
Mail list logo
