Shorewall Support
|
I don't look at problems sent to me directly
but I try to spend some amount of time each day responding to
problems posted on the Shorewall mailing list.
-Tom
Before Reporting a Problem
There are a number of sources for problem solution information. Please
try these before you post.
-
The FAQ has solutions to more than 20 common
problems.
-
The Troubleshooting Information
contains a number of tips to help you solve common problems.
-
The Errata has links to download
updated components.
-
The Mailing List Archives search facility can locate posts
about similar problems:
Mailing List Archive Search
Problem Reporting Guidelines
"Let me see if I can translate your message into a real-world example.
It would be like saying that you have three rooms at home, and when you
walk into one of the rooms, you detect this strange smell. Can anyone tell
you what that strange smell is?
Now, all of us could do some wonderful guessing as to the smell and even
what's causing it. You would be absolutely amazed at the range and variety
of smells we could come up with. Even more amazing is that all of the
explanations for the smells would be completely plausible."
- Russell Mosemann
-
When reporting a problem, give as much information as you can.
Reports that say "I tried XYZ and it didn't work" are not at all helpful.
-
Please don't describe your environment and then ask us to send
you custom configuration files. We're here to answer your
questions but we can't do your job for you.
-
Do you see any "Shorewall" messages in /var/log/messages
when you exercise the function that is giving you problems?
-
Have you looked at the packet flow with a tool like tcpdump
to try to understand what is going on?
-
Have you tried using the diagnostic capabilities of the
application that isn't working? For example, if "ssh" isn't able
to connect, using the "-v" option gives you a lot of valuable diagnostic
information.
-
Please include any of the Shorewall configuration files (especially
the /etc/shorewall/hosts file if you have modified that file)
that you think are relevant.
-
If an error occurs when you try to "shorewall start", include
a trace (See the Troubleshooting section
for instructions).
-
The list server limits posts to 120kb so don't post GIFs of
your network layout, etc to the Mailing List -- your post
will be rejected.
Please post in plain text
A growing number of MTAs serving list subscribers are rejecting all
HTML traffic. At least one MTA has gone so far as to blacklist shorewall.net
"for continuous abuse" because it has been my policy to allow HTML in list
posts!!
I think that blocking all HTML is a Draconian way to control spam and
that the ultimate losers here are not the spammers but the list subscribers
whose MTAs are bouncing all shorewall.net mail. As one list subscriber wrote
to me privately "These e-mail admin's need to get a (explitive deleted)
life instead of trying to rid the planet of HTML based e-mail". Nevertheless,
to allow subscribers to receive list posts as must as possible, I have now
configured the list server at shorewall.net to strip all HTML from outgoing
posts.
Where to Send your Problem Report or to Ask for Help
If you run Shorewall under Bering -- please post your question or problem
to the LEAF Users mailing
list.
If you run Shorewall under MandrakeSoft Multi Network Firewall (MNF)
and you have not purchased an MNF license from MandrakeSoft then you can post
non MNF-specific Shorewall questions to the Shorewall users mailing list.
Do not expect to get free MNF support on the list.
Otherwise, please post your question or problem to the Shorewall users mailing list.
To Subscribe to the mailing list go to http://mail.shorewall.net/mailman/listinfo/shorewall-users
.
Last Updated 12/29/2002 - Tom Eastep
Copyright © 2001, 2002 Thomas M. Eastep.