Table of Contents

,

shorewall troubleshooting

WARNING: Version Mismatch: Shorewall-core is version 5.2.3.2, while the Shorewall version is 5.2.4.5 /usr/share/shorewall/coreversion (EOF)

Reinstall shorewall: 

apt-get install --reinstall shorewall

TABLE_FLUSH failed (Device or resource busy): table raw ... logger: socket /dev/log: Connection refused

   WARNING: Cannot set Martian logging on eth1
Preparing iptables-restore input...
Running /sbin/iptables-restore ...
iptables-restore v1.8.2 (nf_tables): 
line 4: TABLE_FLUSH failed (Device or resource busy): table raw
   ERROR: iptables-restore Failed. Input is in /var/lib/shorewall/.iptables-restore-input
logger: socket /dev/log: Connection refused
Preparing iptables-restore input...
Running /sbin/iptables-restore...
iptables-restore v1.8.2 (nf_tables): 
line 4: TABLE_FLUSH failed (Device or resource busy): table raw
   ERROR: /sbin/iptables-restore Failed.
logger: socket /dev/log: Connection refused

Reboot of server fixed above.

Tested on

iptables-restore: line <some number> failed

You can get this error on reload or restart. Try deleting the .start, .restart or .reload files in /var/lib/shorewall/. They will get regenerated on next shorewall start or shorewall restart

Changes from rules.d directory are not reflected upon reload/restart

If you are adding rules to /etc/shorewall/rules file via embedded shell command i.e. 

?SECTION NEW
SHELL cat /etc/shorewall/rules.d/*.rules 2> /dev/null || true

and the changes are not applied make sure that AUTOMAKE=No in /etc/shorewall/shorewall.conf. Check the man page for other possible values.

Tested on

See also

References