On 07/16/2018 02:20 PM, Naveen Neelakanta wrote: > Hi Tom , > > I tried adding the command, however, my Shorewall is unable to recognize > the iptables command. I get the below error, I am using the > version *4.6.0.3.* > > *IPTABLES(CT --zone 1) eth3 -* > > # shorewall restart > > Compiling... > Processing /etc/shorewall/params ... > Processing /etc/shorewall/shorewall.conf... > Loading Modules... > Compiling /etc/shorewall/zones... > Compiling /etc/shorewall/interfaces... > Compiling /etc/shorewall/hosts... > Determining Hosts in Zones... > Locating Action Files... > Compiling /etc/shorewall/policy... > Running /etc/shorewall/initdone... > Adding Anti-smurf Rules > Compiling TCP Flags filtering... > Compiling Kernel Route Filtering... > Compiling Martian Logging... > Compiling /etc/shorewall/masq... > Compiling MAC Filtration -- Phase 1... > Compiling /etc/shorewall/rules... > Compiling /etc/shorewall/conntrack... > *ERROR: Invalid conntrack ACTION ( IPTABLES(CT --zone 1) ) > /etc/shorewall/conntrack (line 24)* >
You are running a very old (and no longer supported) release. The only way to do what you want with that release is through commands in /etc/shorewall/start. -Tom -- Tom Eastep \ Q: What do you get when you cross a mobster with Shoreline, \ an international standard? Washington, USA \ A: Someone who makes you an offer you can't http://shorewall.org \ understand \_______________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
