From: Teknoskillz <tek...@co...> - 2015-11-26 17:43:15
|
Tom: Thanks for that assistance. Shorewall dump said the /var/log/messages file was not present. Had to edit /etc/rsyslog.d/50-default.conf and uncomment out 3 lines , and restart syslog, now the dump works. Dumped it to a text file, attached here to this message. Also , while the test email I sent last night came through just after I did the shorewall clear, there is another test email that has not come through and am notified: "Delivery to the following recipients is still underway after 10.9 hour(s)" Im not sure if the clear command happened to temporarily clear the bug while changing the state or if there is maybe some email server problems where I am doing the tests from...very odd issue. It seems there was some deliveries of spam as well (which I guess can never be stopped) after the test message came through, so that made me believe the problem was fixed, however its just a "short burst" and I guess the problem reforms after a time...almost like a greylist issue is compounding the bug perhaps...? == Steve ----- Original Message ----- From: "Tom Eastep" <te...@sh...> To: <sho...@li...> Sent: Thursday, November 26, 2015 11:34 AM Subject: Re: [Shorewall-users] Shorewall 4.5.21.6 > On 11/25/2015 9:12 PM, Teknoskillz wrote: >> Hello >> >> Brand new to this list, have used the Fw for a long time w no problems >> except now after I got a new server, accidently put in the Ver6 along >> with >> this one and it seemed to cause a conflict. I removed 6 as I dont have a >> need for IPV6 right now, and uninstalled shorewall, and reinstalled which >> helped a great deal, except there seems to be an issue where email is >> disappearing when the fw is running, effectng only incoming mail. Port >> scan >> confirms the rules are working ok and a shorewall check shows no >> troubles. I >> am using Ubuntu 14 as the OS with Webmin as the gui. The module it has >> for >> shorewall is very buggy, and right now it wont even find shorewall , so I >> am >> doing everything on the command prompt. The last thing I did was a purrge >> command, then another install, and the problem seemed fixed, but its back >> again. >> >> I do know when the webmin module was working and I was able to stop the >> fw >> using that interface, the emails came through ok, but when I went to >> restart >> the fw, webmin would hang up because I guess the installation was bad or >> it >> was configured to do that. As it is now when I do a shorewall stop >> command, >> all the traffic to the server is blocked. I was reading there is a file >> that >> is suppose to be configured to stop this from happening, but its not in >> the >> specified etc/shorewall directory. Do I need to create it? > > When you are running Debian or a Debian derivative like Ubuntu, the > /etc/shorewall directory is minimally populated. Each of the quickstart > guides contain this warning: > > Warning > > Note to Debian and Ubuntu Users > > If you install using the .deb, you will find that your /etc/shorewall > directory is practially empty. This is intentional. The released > configuration file skeletons may be found on your system in the > directory /usr/share/doc/shorewall/default-config. Simply copy the files > you need from that directory to /etc/shorewall and modify the copies. > >> >> I also remember that I may have had to reinstall postfix a couple of >> times >> before any of this happened, but I believe if the postfix or other mail >> config was wrong, the mail problem would persist even when the fw is >> down. >> So I believe this is shorewall related...its been a frustrating issue for >> a >> while now sending out mail then never getting answers when replies never >> go >> through. There use to be email bounce messages, but not since the purge. >> >> As I write this now, a couple of test emails I sent came through but 9 >> minutes later. I do have greylisting on, but they came in while I had >> executed a shorewall clear command...so I am not sure if everything is >> really ok now, or it was just a coicidence. Argh ! >> >> Any assistance or feedback appreciated! > > As always, it is best if you forward the output of 'shorewall dump' > collected as described at http://www.shorewall.org/support.htm#guidelines. > > Thanks, > -Tom > -- > Tom Eastep \ When I die, I want to go like my Grandfather who > Shoreline, \ died peacefully in his sleep. Not screaming like > Washington, USA \ all of the passengers in his car > http://shorewall.net \________________________________________________ > > ------------------------------------------------------------------------------ > Go from Idea to Many App Stores Faster with Intel(R) XDK > Give your users amazing mobile app experiences with Intel(R) XDK. > Use one codebase in this all-in-one HTML5 development environment. > Design, debug & build mobile apps & 2D/3D high-impact games for multiple > OSs. > http://pubads.g.doubleclick.net/gampad/clk?id=254741551&iu=/4140 > _______________________________________________ > Shorewall-users mailing list > Sho...@li... > https://lists.sourceforge.net/lists/listinfo/shorewall-users |