spacepaste

Paste details

reply | raw

  1.  
  2. Compiling using Shorewall 5.2.1.4...
  3. IN===> 5.2.1.4
  4. Processing /etc/shorewall/params ...
  5. Params:
  6. export COLORTERM="truecolor"
  7. export CONFIG_PROTECT="/var/bind /usr/share/gnupg/qualified.txt"
  8. export CONFIG_PROTECT_MASK="/etc/sandbox.d /etc/php/cli-php5.6/ext-active/ /etc/php/cgi-php5.6/ext-active/ /etc/php/apache2-php5.6/ext-active/ /etc/php/cli-php7.2/ext-active/ /etc/php/cgi-php7.2/ext-active/ /etc/php/apache2-php7.2/ext-active/ /etc/fonts/fonts.conf /etc/gentoo-release /etc/terminfo /etc/ca-certificates.conf /etc/revdep-rebuild"
  9. export EDITOR="/bin/nano"
  10. export FW_NET="220.233.164.62/32"
  11. export GCC_SPECS=""
  12. export HOME="/root"
  13. export INFOPATH="/usr/share/gcc-data/x86_64-pc-linux-gnu/7.3.0/info:/usr/share/binutils-data/x86_64-pc-linux-gnu/2.30/info:/usr/share/info"
  14. export LANG="en_US.utf8"
  15. export LESS="-R -M --shift 5"
  16. export LESSOPEN="|lesspipe %s"
  17. export LOC_NET="192.168.1.0/24"
  18. export LOGNAME="root"
  19. export LS_COLORS="rs=0:di=01;34:ln=01;36:mh=00:pi=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01:or=01;05;37;41:mi=01;05;37;41:su=37;41:sg=30;43:ca=30;41:tw=30;42:ow=34;42:st=37;44:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arc=01;31:*.arj=01;31:*.taz=01;31:*.lha=01;31:*.lz4=01;31:*.lzh=01;31:*.lzma=01;31:*.tlz=01;31:*.txz=01;31:*.tzo=01;31:*.t7z=01;31:*.zip=01;31:*.z=01;31:*.Z=01;31:*.dz=01;31:*.gz=01;31:*.lrz=01;31:*.lz=01;31:*.lzo=01;31:*.xz=01;31:*.zst=01;31:*.tzst=01;31:*.bz2=01;31:*.bz=01;31:*.tbz=01;31:*.tbz2=01;31:*.tz=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.war=01;31:*.ear=01;31:*.sar=01;31:*.rar=01;31:*.alz=01;31:*.ace=01;31:*.zoo=01;31:*.cpio=01;31:*.7z=01;31:*.rz=01;31:*.cab=01;31:*.wim=01;31:*.swm=01;31:*.dwm=01;31:*.esd=01;31:*.jpg=01;35:*.jpeg=01;35:*.mjpg=01;35:*.mjpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.svg=01;35:*.svgz=01;35:*.mng=01;35:*.pcx=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35:*.m2v=01;35:*.mkv=01;35:*.webm=01;35:*.ogm=01;35:*.mp4=01;35:*.m4v=01;35:*.mp4v=01;35:*.vob=01;35:*.qt=01;35:*.nuv=01;35:*.wmv=01;35:*.asf=01;35:*.rm=01;35:*.rmvb=01;35:*.flc=01;35:*.avi=01;35:*.fli=01;35:*.flv=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.yuv=01;35:*.cgm=01;35:*.emf=01;35:*.ogv=01;35:*.ogx=01;35:*.cfg=00;32:*.conf=00;32:*.diff=00;32:*.doc=00;32:*.ini=00;32:*.log=00;32:*.patch=00;32:*.pdf=00;32:*.ps=00;32:*.tex=00;32:*.txt=00;32:*.aac=00;36:*.au=00;36:*.flac=00;36:*.m4a=00;36:*.mid=00;36:*.midi=00;36:*.mka=00;36:*.mp3=00;36:*.mpc=00;36:*.ogg=00;36:*.ra=00;36:*.wav=00;36:*.oga=00;36:*.opus=00;36:*.spx=00;36:*.xspf=00;36:"
  20. export MAIL="/var/mail/root"
  21. export MANPAGER="manpager"
  22. export MANPATH="/usr/share/gcc-data/x86_64-pc-linux-gnu/7.3.0/man:/usr/share/binutils-data/x86_64-pc-linux-gnu/2.30/man:/usr/lib64/php5.6/man/:/usr/lib64/php7.2/man/:/usr/local/share/man:/usr/share/man"
  23. export OLDPWD="/root"
  24. export OPENGL_PROFILE="xorg-x11"
  25. export PAGER="/usr/bin/less"
  26. export PATH="/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin:/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin:/usr/local/bin"
  27. export PERL_HASH_SEED="0"
  28. export PERL_PERTURB_KEYS="0"
  29. export PWD="/etc/shorewall"
  30. export SHELL="/bin/bash"
  31. export SHLVL="3"
  32. export SSH_CLIENT="192.168.1.26 60618 22"
  33. export SSH_CONNECTION="192.168.1.26 60618 192.168.1.1 22"
  34. export SSH_TTY="/dev/pts/0"
  35. export SW_CONFDIR="/etc/shorewall"
  36. export TERM="xterm-256color"
  37. export USER="root"
  38. PARAMS:
  39. FW_NET='220.233.164.62/32'
  40. MANPAGER='manpager'
  41. SHELL='/bin/bash'
  42. CONFIG_PROTECT_MASK='/etc/sandbox.d /etc/php/cli-php5.6/ext-active/ /etc/php/cgi-php5.6/ext-active/ /etc/php/apache2-php5.6/ext-active/ /etc/php/cli-php7.2/ext-active/ /etc/php/cgi-php7.2/ext-active/ /etc/php/apache2-php7.2/ext-active/ /etc/fonts/fonts.conf /etc/gentoo-release /etc/terminfo /etc/ca-certificates.conf /etc/revdep-rebuild'
  43. PERL_HASH_SEED='0'
  44. OPENGL_PROFILE='xorg-x11'
  45. SSH_CONNECTION='192.168.1.26 60618 192.168.1.1 22'
  46. GCC_SPECS=''
  47. LESSOPEN='|lesspipe %s'
  48. LOGNAME='root'
  49. LANG='en_US.utf8'
  50. MAIL='/var/mail/root'
  51. LS_COLORS='rs=0:di=01;34:ln=01;36:mh=00:pi=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01:or=01;05;37;41:mi=01;05;37;41:su=37;41:sg=30;43:ca=30;41:tw=30;42:ow=34;42:st=37;44:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arc=01;31:*.arj=01;31:*.taz=01;31:*.lha=01;31:*.lz4=01;31:*.lzh=01;31:*.lzma=01;31:*.tlz=01;31:*.txz=01;31:*.tzo=01;31:*.t7z=01;31:*.zip=01;31:*.z=01;31:*.Z=01;31:*.dz=01;31:*.gz=01;31:*.lrz=01;31:*.lz=01;31:*.lzo=01;31:*.xz=01;31:*.zst=01;31:*.tzst=01;31:*.bz2=01;31:*.bz=01;31:*.tbz=01;31:*.tbz2=01;31:*.tz=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.war=01;31:*.ear=01;31:*.sar=01;31:*.rar=01;31:*.alz=01;31:*.ace=01;31:*.zoo=01;31:*.cpio=01;31:*.7z=01;31:*.rz=01;31:*.cab=01;31:*.wim=01;31:*.swm=01;31:*.dwm=01;31:*.esd=01;31:*.jpg=01;35:*.jpeg=01;35:*.mjpg=01;35:*.mjpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.svg=01;35:*.svgz=01;35:*.mng=01;35:*.pcx=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35:*.m2v=01;35:*.mkv=01;35:*.webm=01;35:*.ogm=01;35:*.mp4=01;35:*.m4v=01;35:*.mp4v=01;35:*.vob=01;35:*.qt=01;35:*.nuv=01;35:*.wmv=01;35:*.asf=01;35:*.rm=01;35:*.rmvb=01;35:*.flc=01;35:*.avi=01;35:*.fli=01;35:*.flv=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.yuv=01;35:*.cgm=01;35:*.emf=01;35:*.ogv=01;35:*.ogx=01;35:*.cfg=00;32:*.conf=00;32:*.diff=00;32:*.doc=00;32:*.ini=00;32:*.log=00;32:*.patch=00;32:*.pdf=00;32:*.ps=00;32:*.tex=00;32:*.txt=00;32:*.aac=00;36:*.au=00;36:*.flac=00;36:*.m4a=00;36:*.mid=00;36:*.midi=00;36:*.mka=00;36:*.mp3=00;36:*.mpc=00;36:*.ogg=00;36:*.ra=00;36:*.wav=00;36:*.oga=00;36:*.opus=00;36:*.spx=00;36:*.xspf=00;36:'
  52. PERL_PERTURB_KEYS='0'
  53. USER='root'
  54. PWD='/etc/shorewall'
  55. HOME='/root'
  56. SSH_CLIENT='192.168.1.26 60618 22'
  57. PAGER='/usr/bin/less'
  58. LESS='-R -M --shift 5'
  59. COLORTERM='truecolor'
  60. EDITOR='/bin/nano'
  61. TERM='xterm-256color'
  62. PATH='/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin:/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin:/usr/local/bin'
  63. CONFIG_PROTECT='/var/bind /usr/share/gnupg/qualified.txt'
  64. SSH_TTY='/dev/pts/0'
  65. LOC_NET='192.168.1.0/24'
  66. SW_CONFDIR='/etc/shorewall'
  67. INFOPATH='/usr/share/gcc-data/x86_64-pc-linux-gnu/7.3.0/info:/usr/share/binutils-data/x86_64-pc-linux-gnu/2.30/info:/usr/share/info'
  68. MANPATH='/usr/share/gcc-data/x86_64-pc-linux-gnu/7.3.0/man:/usr/share/binutils-data/x86_64-pc-linux-gnu/2.30/man:/usr/lib64/php5.6/man/:/usr/lib64/php7.2/man/:/usr/local/share/man:/usr/share/man'
  69. Processing /etc/shorewall/shorewall.conf...
  70. IN===> STARTUP_ENABLED=Yes
  71. IN===> VERBOSITY=1
  72. IN===> PAGER=
  73. IN===> FIREWALL=
  74. IN===> LOG_LEVEL="info"
  75. IN===> BLACKLIST_LOG_LEVEL=
  76. IN===> INVALID_LOG_LEVEL=
  77. IN===> LOG_BACKEND=
  78. IN===> LOG_MARTIANS=Yes
  79. IN===> LOG_VERBOSITY=2
  80. IN===> LOG_ZONE=Both
  81. IN===> LOGALLNEW=
  82. IN===> LOGFILE=/var/log/messages
  83. IN===> LOGFORMAT="%s %s "
  84. IN===> LOGTAGONLY=No
  85. IN===> LOGLIMIT="s:1/sec:10"
  86. IN===> MACLIST_LOG_LEVEL="$LOG_LEVEL"
  87. IN===> RELATED_LOG_LEVEL=
  88. IN===> RPFILTER_LOG_LEVEL="$LOG_LEVEL"
  89. IN===> SFILTER_LOG_LEVEL="$LOG_LEVEL"
  90. IN===> SMURF_LOG_LEVEL="$LOG_LEVEL"
  91. IN===> STARTUP_LOG=/var/log/shorewall-init.log
  92. IN===> TCP_FLAGS_LOG_LEVEL="$LOG_LEVEL"
  93. IN===> UNTRACKED_LOG_LEVEL=
  94. IN===> ARPTABLES=
  95. IN===> CONFIG_PATH=":${CONFDIR}/shorewall:${SHAREDIR}/shorewall"
  96. IN===> GEOIPDIR=/usr/share/xt_geoip/LE
  97. IN===> IPTABLES=
  98. IN===> IP=
  99. IN===> IPSET=
  100. IN===> LOCKFILE=
  101. IN===> MODULESDIR=
  102. IN===> NFACCT=
  103. IN===> PATH="/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/bin:/usr/local/sbin"
  104. IN===> PERL=/usr/bin/perl
  105. IN===> RESTOREFILE=restore
  106. IN===> SHOREWALL_SHELL=/bin/sh
  107. IN===> SUBSYSLOCK=/run/lock/shorewall
  108. IN===> TC=
  109. IN===> ACCEPT_DEFAULT="none"
  110. IN===> BLACKLIST_DEFAULT="Broadcast(DROP),Multicast(DROP),dropNotSyn:$LOG_LEVEL,dropInvalid:$LOG_LEVEL,DropDNSrep:$LOG_LEVEL"
  111. IN===> DROP_DEFAULT="Broadcast(DROP),Multicast(DROP)"
  112. IN===> NFQUEUE_DEFAULT="none"
  113. IN===> QUEUE_DEFAULT="none"
  114. IN===> REJECT_DEFAULT="Broadcast(DROP),Multicast(DROP)"
  115. IN===> RCP_COMMAND='scp ${files} ${root}@${system}:${destination}'
  116. IN===> RSH_COMMAND='ssh ${root}@${system} ${command}'
  117. IN===> ACCOUNTING=Yes
  118. IN===> ACCOUNTING_TABLE=filter
  119. IN===> ADD_IP_ALIASES=No
  120. IN===> ADD_SNAT_ALIASES=No
  121. IN===> ADMINISABSENTMINDED=Yes
  122. IN===> AUTOCOMMENT=Yes
  123. IN===> AUTOHELPERS=No
  124. IN===> AUTOMAKE=Yes
  125. IN===> BALANCE_PROVIDERS=No
  126. IN===> BASIC_FILTERS=No
  127. IN===> BLACKLIST="NEW,INVALID,UNTRACKED"
  128. IN===> CLAMPMSS=Yes
  129. IN===> CLEAR_TC=Yes
  130. IN===> COMPLETE=No
  131. IN===> DEFER_DNS_RESOLUTION=Yes
  132. IN===> DELETE_THEN_ADD=Yes
  133. IN===> DETECT_DNAT_IPADDRS=No
  134. IN===> DISABLE_IPV6=Yes
  135. IN===> DOCKER=No
  136. IN===> DONT_LOAD=
  137. IN===> DYNAMIC_BLACKLIST=Yes
  138. IN===> EXPAND_POLICIES=Yes
  139. IN===> EXPORTMODULES=Yes
  140. IN===> FASTACCEPT=No
  141. IN===> FORWARD_CLEAR_MARK=
  142. IN===> HELPERS=
  143. IN===> IGNOREUNKNOWNVARIABLES=No
  144. IN===> IMPLICIT_CONTINUE=No
  145. IN===> IPSET_WARNINGS=Yes
  146. IN===> IP_FORWARDING=On
  147. IN===> KEEP_RT_TABLES=No
  148. IN===> LOAD_HELPERS_ONLY=Yes
  149. IN===> MACLIST_TABLE=filter
  150. IN===> MACLIST_TTL=
  151. IN===> MANGLE_ENABLED=Yes
  152. IN===> MARK_IN_FORWARD_CHAIN=No
  153. IN===> MINIUPNPD=No
  154. IN===> MULTICAST=No
  155. IN===> MUTEX_TIMEOUT=60
  156. IN===> NULL_ROUTE_RFC1918=No
  157. IN===> OPTIMIZE=All
  158. IN===> OPTIMIZE_ACCOUNTING=No
  159. IN===> PERL_HASH_SEED=0
  160. IN===> REJECT_ACTION=
  161. IN===> RENAME_COMBINED=Yes
  162. IN===> REQUIRE_INTERFACE=No
  163. IN===> RESTART=restart
  164. IN===> RESTORE_DEFAULT_ROUTE=Yes
  165. IN===> RESTORE_ROUTEMARKS=Yes
  166. IN===> RETAIN_ALIASES=No
  167. IN===> ROUTE_FILTER=No
  168. IN===> SAVE_ARPTABLES=No
  169. IN===> SAVE_IPSETS=No
  170. IN===> TC_ENABLED=No
  171. IN===> TC_EXPERT=Yes
  172. IN===> TC_PRIOMAP="2 3 3 3 2 3 1 1 2 2 2 2 2 2 2 2"
  173. IN===> TRACK_PROVIDERS=Yes
  174. IN===> TRACK_RULES=No
  175. IN===> USE_DEFAULT_RT=Yes
  176. IN===> USE_NFLOG_SIZE=No
  177. IN===> USE_PHYSICAL_NAMES=No
  178. IN===> USE_RT_NAMES=No
  179. IN===> VERBOSE_MESSAGES=Yes
  180. IN===> WARNOLDCAPVERSION=Yes
  181. IN===> WORKAROUNDS=No
  182. IN===> ZERO_MARKS=No
  183. IN===> ZONE2ZONE=-
  184. IN===> BLACKLIST_DISPOSITION=DROP
  185. IN===> INVALID_DISPOSITION=CONTINUE
  186. IN===> MACLIST_DISPOSITION=REJECT
  187. IN===> RELATED_DISPOSITION=ACCEPT
  188. IN===> RPFILTER_DISPOSITION=DROP
  189. IN===> SMURF_DISPOSITION=DROP
  190. IN===> SFILTER_DISPOSITION=DROP
  191. IN===> TCP_FLAGS_DISPOSITION=DROP
  192. IN===> UNTRACKED_DISPOSITION=CONTINUE
  193. IN===> TC_BITS=
  194. IN===> PROVIDER_BITS=
  195. IN===> PROVIDER_OFFSET=
  196. IN===> MASK_BITS=
  197. IN===> ZONE_BITS=0
  198. SYS----> /sbin/iptables -w -L -n
  199. Chain INPUT (policy DROP)
  200. target prot opt source destination
  201. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
  202. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
  203. ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpts:67:68
  205. Chain FORWARD (policy DROP)
  206. target prot opt source destination
  207. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
  208. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
  209. ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
  210. ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpts:67:68
  212. Chain OUTPUT (policy ACCEPT)
  213. target prot opt source destination
  214. Loading Modules...
  215. IN===> loadmodule ip_conntrack_amanda
  216. IN===> loadmodule ip_conntrack_ftp
  217. IN===> loadmodule ip_conntrack_h323
  218. IN===> loadmodule ip_conntrack_irc
  219. IN===> loadmodule ip_conntrack_netbios_ns
  220. IN===> loadmodule ip_conntrack_pptp
  221. IN===> loadmodule ip_conntrack_sip
  222. IN===> loadmodule ip_conntrack_tftp
  223. IN===> loadmodule ip_nat_amanda
  224. IN===> loadmodule ip_nat_ftp
  225. IN===> loadmodule ip_nat_h323
  226. IN===> loadmodule ip_nat_irc
  227. IN===> loadmodule ip_nat_pptp
  228. IN===> loadmodule ip_nat_sip
  229. IN===> loadmodule ip_nat_snmp_basic
  230. IN===> loadmodule ip_nat_tftp
  231. IN===> loadmodule nf_conntrack_ftp
  232. IN===> loadmodule nf_conntrack_h323
  233. IN===> loadmodule nf_conntrack_irc
  234. IN===> loadmodule nf_conntrack_netbios_ns
  235. IN===> loadmodule nf_conntrack_netlink
  236. IN===> loadmodule nf_conntrack_pptp
  237. IN===> loadmodule nf_conntrack_proto_gre
  238. IN===> loadmodule nf_conntrack_proto_sctp
  239. IN===> loadmodule nf_conntrack_proto_udplite
  240. IN===> loadmodule nf_conntrack_sip sip_direct_media=0
  241. IN===> loadmodule nf_conntrack_tftp
  242. IN===> loadmodule nf_conntrack_sane
  243. IN===> loadmodule nf_nat_amanda
  244. IN===> loadmodule nf_nat_ftp
  245. IN===> loadmodule nf_nat_h323
  246. IN===> loadmodule nf_nat_irc
  247. IN===> loadmodule nf_nat
  248. IN===> loadmodule nf_nat_pptp
  249. IN===> loadmodule nf_nat_proto_gre
  250. IN===> loadmodule nf_nat_sip
  251. IN===> loadmodule nf_nat_snmp_basic
  252. IN===> loadmodule nf_nat_tftp
  253. IN===> loadmodule ipt_LOG
  254. IN===> loadmodule nf_log_ipv4
  255. IN===> loadmodule xt_LOG
  256. IN===> loadmodule xt_NFLOG
  257. IN===> loadmodule nfnetlink_log
  258. SYS----> /sbin/iptables -w -N fooX14663
  259. SYS----> /sbin/iptables -w -N foo1X14663
  260. SYS----> /sbin/iptables -w -A fooX14663 -m conntrack --ctstate ESTABLISHED,RELATED -j ACCEPT
  261. SYS----> /sbin/iptables -w -A fooX14663 -p tcp -m multiport --dports 21,22 -j ACCEPT
  262. SYS----> /sbin/iptables -w -A fooX14663 -p tcp -m multiport --sports 60 -m multiport --dports 99 -j ACCEPT
  263. SYS----> /sbin/iptables -w -t raw -L -n
  264. Chain PREROUTING (policy ACCEPT)
  265. target prot opt source destination
  267. Chain OUTPUT (policy ACCEPT)
  268. target prot opt source destination
  269. SYS----> /sbin/iptables -w -t raw -N fooX14663
  270. SYS----> /sbin/iptables -w -t raw -A fooX14663 -j CT --notrack
  271. SYS----> /sbin/iptables -w -t raw -A fooX14663 -p udp --dport 137 -j CT --helper netbios-ns
  272. iptables: No chain/target/match by that name.
  273. SYS----> /sbin/iptables -w -t raw -A fooX14663 -p tcp --dport 1729 -j CT --helper pptp
  274. SYS----> /sbin/iptables -w -t raw -A fooX14663 -p udp --dport 5060 -j CT --helper sip
  275. SYS----> /sbin/iptables -w -t raw -A fooX14663 -p tcp --dport 6667 -j CT --helper irc
  276. iptables: No chain/target/match by that name.
  277. SYS----> /sbin/iptables -w -t raw -A fooX14663 -p tcp --dport 6667 -j CT --helper irc-0
  278. iptables: No chain/target/match by that name.
  279. SYS----> /sbin/iptables -w -t raw -A fooX14663 -p udp --dport 69 -j CT --helper tftp
  280. iptables: No chain/target/match by that name.
  281. SYS----> /sbin/iptables -w -t raw -A fooX14663 -p udp --dport 69 -j CT --helper tftp-0
  282. iptables: No chain/target/match by that name.
  283. SYS----> /sbin/iptables -w -t raw -A fooX14663 -p udp --dport 161 -j CT --helper snmp
  284. iptables: No chain/target/match by that name.
  285. SYS----> /sbin/iptables -w -t raw -A fooX14663 -p udp --dport 10080 -j CT --helper amanda
  286. iptables: No chain/target/match by that name.
  287. SYS----> /sbin/iptables -w -t raw -A fooX14663 -p udp --dport 1719 -j CT --helper RAS
  288. iptables: No chain/target/match by that name.
  289. SYS----> /sbin/iptables -w -t raw -A fooX14663 -p tcp --dport 21 -j CT --helper ftp
  290. SYS----> /sbin/iptables -w -t raw -A fooX14663 -p tcp --dport 6566 -j CT --helper sane
  291. iptables: No chain/target/match by that name.
  292. SYS----> /sbin/iptables -w -t raw -A fooX14663 -p tcp --dport 6566 -j CT --helper sane-0
  293. iptables: No chain/target/match by that name.
  294. SYS----> /sbin/iptables -w -A fooX14663 -m conntrack --ctorigdst 192.168.1.1 -j ACCEPT
  295. SYS----> /sbin/iptables -w -A fooX14663 -m hashlimit --hashlimit-upto 3/min --hashlimit-burst 3 --hashlimit-name fooX14663 --hashlimit-mode srcip -j ACCEPT
  296. SYS----> /sbin/iptables -w -A fooX14663 -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --clamp-mss-to-pmtu
  297. SYS----> /sbin/iptables -w -t mangle -L -n
  298. Chain PREROUTING (policy ACCEPT)
  299. target prot opt source destination
  301. Chain INPUT (policy ACCEPT)
  302. target prot opt source destination
  304. Chain FORWARD (policy ACCEPT)
  305. target prot opt source destination
  307. Chain OUTPUT (policy ACCEPT)
  308. target prot opt source destination
  310. Chain POSTROUTING (policy ACCEPT)
  311. target prot opt source destination
  312. SYS----> /sbin/iptables -w -t mangle -A fooX14663 -j MARK --set-mark 1
  313. SYS----> /sbin/iptables -w -A fooX14663 -j LOG
  314. SYS----> /sbin/iptables -w -A fooX14663 -p tcp -m multiport --dports 21:22 -j ACCEPT
  315. NF-(N)-> raw:OUTPUT
  316. NF-(N)-> raw:PREROUTING
  317. NF-(N)-> filter:INPUT
  318. NF-(N)-> filter:OUTPUT
  319. NF-(N)-> filter:FORWARD
  320. NF-(N)-> nat:PREROUTING
  321. NF-(N)-> nat:POSTROUTING
  322. NF-(N)-> nat:OUTPUT
  323. SYS----> /sbin/iptables -w -t nat -L -n
  324. Chain PREROUTING (policy ACCEPT)
  325. target prot opt source destination
  327. Chain INPUT (policy ACCEPT)
  328. target prot opt source destination
  330. Chain OUTPUT (policy ACCEPT)
  331. target prot opt source destination
  333. Chain POSTROUTING (policy ACCEPT)
  334. target prot opt source destination
  335. SYS----> /sbin/iptables -w -t nat -L INPUT -n
  336. Chain INPUT (policy ACCEPT)
  337. target prot opt source destination
  338. NF-(N)-> nat:INPUT
  339. NF-(N)-> mangle:PREROUTING
  340. NF-(N)-> mangle:INPUT
  341. NF-(N)-> mangle:OUTPUT
  342. SYS----> /sbin/iptables -w -t mangle -L FORWARD -n
  343. Chain FORWARD (policy ACCEPT)
  344. target prot opt source destination
  345. NF-(N)-> mangle:FORWARD
  346. NF-(N)-> mangle:POSTROUTING
  347. NF-(N)-> filter:reject
  348. Compiling /etc/shorewall/zones...
  349. IN===> fw firewall
  350. IN===> net ipv4
  351. IN===> loc ipv4
  352. IN===> vpn ipv4
  353. CD===> ?FORMAT 2
  354. Compiling /etc/shorewall/interfaces...
  355. IN===> loc net1 tcpflags,nosmurfs,routefilter,logmartians,dhcp
  356. IN===> net ppp0 tcpflags,nosmurfs,routefilter,logmartians,sourceroute=0,optional,wait=200
  357. SYS----> /sbin/iptables -w -F fooX14663
  358. SYS----> /sbin/iptables -w -X fooX14663
  359. SYS----> /sbin/iptables -w -F foo1X14663
  360. SYS----> /sbin/iptables -w -X foo1X14663
  361. SYS----> /sbin/iptables -w -t mangle -F fooX14663
  362. SYS----> /sbin/iptables -w -t mangle -X fooX14663
  363. SYS----> /sbin/iptables -w -t nat -F fooX14663
  364. iptables: No chain/target/match by that name.
  365. SYS----> /sbin/iptables -w -t nat -X fooX14663
  366. iptables: No chain/target/match by that name.
  367. SYS----> /sbin/iptables -w -t raw -F fooX14663
  368. SYS----> /sbin/iptables -w -t raw -X fooX14663
  369. ERROR: Invalid value (200) for option wait /etc/shorewall/interfaces (line 14) at /usr/share/shorewall/Shorewall/Config.pm line 1565.
  370. Shorewall::Config::fatal_error("Invalid value (200) for option wait") called at /usr/share/shorewall/Shorewall/Zones.pm line 1334
  371. Shorewall::Zones::process_interface(2, 0) called at /usr/share/shorewall/Shorewall/Zones.pm line 1541
  372. Shorewall::Zones::validate_interfaces_file(0) called at /usr/share/shorewall/Shorewall/Compiler.pm line 690
  373. Shorewall::Compiler::compiler("script", "/var/lib/shorewall/.start", "directory", "", "verbosity", 1, "timestamp", 0, ...) called at /usr/share/shorewall/compiler.pl line 135
  374. eval() called 0 times
  375.  
Powered by spacepaste. Paste removal.