#40 Starting firehol with unreachable host

closed
nobody
None
5
2010-04-08
2008-06-29
LeonB
No

I'm running firehol on a couple of servers and it's really nice! I have a fairly big onfig file with 30 or so hosts. But sometimes a host isn't reachable. Then when I restart firehol it fails with an error. For example:

--------------------------------------------------------------------------------
ERROR : # 12.
WHAT : A runtime command failed to execute (returned error 2).
SOURCE : line INIT of /etc/firehol/firehol.conf
COMMAND : /sbin/iptables -t filter -A in_world_ssh_c13 -p tcp -s www.crmexcellence.nl --sport 22 --dport 32768:61000 -m state --state ESTABLISHED -j ACCEPT
OUTPUT :

I thought about making a wrapper script that checks the hosts, but it would be nice if firehol did this.

Discussion

  • Costa Tsaousis

    Costa Tsaousis - 2008-07-04

    Logged In: YES
    user_id=582393
    Originator: NO

    I think that this command can fail only because the hostname is unresolvable.
    You have 3 options:

    1. fix your name service
    2. use only IPs in firehol
    3. add the hostname and IP in your /etc/hosts

    Costa

     
  • Costa Tsaousis

    Costa Tsaousis - 2010-04-08

    Sorry, I cannot fix this.
    Such commands can only fail due to DNS errors. Either make sure you have a working dns, or use IPs in firehol.

     
  • Costa Tsaousis

    Costa Tsaousis - 2010-04-08
    • status: open --> closed