Work at SourceForge, help us to make it a better place! We have an immediate need for a Support Technician in our San Francisco or Denver office.

Close

#2448 error generating rules in case of macro use

1.260
open
Jamie Cameron
5
2006-03-14
2006-03-14
kruppi
No

Hi folks,

if i generate a rule for DNS with the macro funktion,
Webmin generate follwing line

DNS/ACCEPT DMZ endor all

The "all" in column 4 produce the error
..Expanding Macro /usr/share/shorewall/macro.DNS...
ERROR: Port number not allowed with protocol "all";
rule: "ACCEPT DMZ endor all 53 - - - -"

The right thing are to kill the all, because the macro
will generate 2 rules. One for udp, one for tcp. But
this are only possible with manually editing the file.

With best regards

/jk

Discussion

  • kruppi
    kruppi
    2006-03-15

    Logged In: YES
    user_id=1437624

    Hi,

    the solution for me is to choose 'Other' for Protocol and
    put a "-" in the box after it.

    But this behavior is quite different to the use of the
    configfiles directly.

    With best regards
    /jk

     
  • Jamie Cameron
    Jamie Cameron
    2006-03-15

    Logged In: YES
    user_id=129364

    What version of Shorewall are you using there?

     
  • kruppi
    kruppi
    2006-03-15

    Logged In: YES
    user_id=1437624

    Shorewall version 3.0.5