extern/shorewall_code
1
0
Fork 1
mirror of https://gitlab.com/shorewall/code.git synced 2024-12-12 01:10:52 +01:00
Code Issues Packages Projects Releases Wiki Activity
463e22bdb6
shorewall_code/Shorewall/known_problems.txt
Tom Eastep 192a8967ce Update release docs for Perl diagnostic elimination 
Signed-off-by: Tom Eastep <teastep@shorewall.net>
2010-06-24 14:52:26 -07:00

44 lines
1.4 KiB
Plaintext
Raw Blame History

1) The IPv6 allowBcast built-in action generates an invalid ip6tables
rule. This defect is present in all versions of Shorewall that
support IPv6.
Fixed in Shorewall 4.4.10.1.
2) If IPSET=<pathname> is specified in shorewall.conf, then when an
ipset is used in a configuration file entry, the following fatal
compilation error occurs:
ERROR: ipset names in Shorewall configuration files require Ipset
Match in your kernel and iptables : /etc/shorewall/rules (line nn)
You can work around this problem by executing the following at a
root shell prompt:
shorewall show -f capabilities > /etc/shorewall/capabilities
Fixed in Shorewall 4.4.10.1. After installing this fix, if you
executed the above command to work around the problem, we recommend
that you remove /etc/shorewall/capabilities.
3) On Debian and derivatives, shorewall-init is starting too late.
To work around this issue, at a root prompt:
cd /etc/rcS.d
mv S38shorewall-init S08shorewall-init
4) The new REQUIRE_INTERFACE option was not added to shorewall.conf
and shorewall6.conf.
You can simply add it if you need it.
5) Under Perl 5.12.1, a harmless Perl run-time diagnostic is
produced when options are omitted from shorewall.conf or
shorewall6.conf.
Example:
Use of uninitialized value
$Shorewall::Config::config{"REQUIRE_INTERFACE"} in lc at
/usr/share/shorewall/Shorewall/Config.pm line 1902.
Reference in New Issue View Git Blame Copy Permalink