Re: [Shorewall-users] DROP rule creates double table entry

On 8/11/10 8:48 PM, Hellmut Tümmler wrote:
> Hello everybody,
> maybe i am staring for too long into this terminal and start to see double
> contours.
> Using shorewall-4.4.10 on my gentoo box with following entry in rules (among
> others, tell me if you need a dump). It's located below SECTION NEW:
>
> #ACTION SRC DEST
> DROP net:82.96.96.3,85.190.0.3 any
>
> According to 'shorewall show net2fw' the rule is generated twice. This cannot
> be right can it? It doesn't happen when DEST is set to all.
>
> ...
> 0 0 DROP all -- * * 82.96.96.3 0.0.0.0/0
> 0 0 DROP all -- * * 85.190.0.3 0.0.0.0/0
> 0 0 DROP all -- * * 82.96.96.3 0.0.0.0/0
> 0 0 DROP all -- * * 85.190.0.3 0.0.0.0/0
> ...

I have reproduced the problem.

-Tom
-- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________

------------------------------------------------------------------------------
This SF.net email is sponsored by

Make an app they can't live without
Enter the BlackBerry Developer Challenge
http://p.sf.net/sfu/RIM-dev2dev

_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users

• This message: [ Message body ]
• Next message: Tom Eastep: "Re: [Shorewall-users] DROP rule creates double table entry"
• Previous message: Hellmut Tümmler: "[Shorewall-users] DROP rule creates double table entry"
• In reply to: Hellmut Tümmler: "[Shorewall-users] DROP rule creates double table entry"
• Next in thread: Tom Eastep: "Re: [Shorewall-users] DROP rule creates double table entry"
• Reply: Tom Eastep: "Re: [Shorewall-users] DROP rule creates double table entry"

• Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]