wiki:shorewall_troubleshooting
Table of Contents
shorewall troubleshooting
WARNING: Version Mismatch: Shorewall-core is version 5.2.3.2, while the Shorewall version is 5.2.4.5 /usr/share/shorewall/coreversion (EOF)
Reinstall shorewall:
apt-get install --reinstall shorewall
TABLE_FLUSH failed (Device or resource busy): table raw ... logger: socket /dev/log: Connection refused
WARNING: Cannot set Martian logging on eth1 Preparing iptables-restore input... Running /sbin/iptables-restore ... iptables-restore v1.8.2 (nf_tables): line 4: TABLE_FLUSH failed (Device or resource busy): table raw ERROR: iptables-restore Failed. Input is in /var/lib/shorewall/.iptables-restore-input logger: socket /dev/log: Connection refused Preparing iptables-restore input... Running /sbin/iptables-restore... iptables-restore v1.8.2 (nf_tables): line 4: TABLE_FLUSH failed (Device or resource busy): table raw ERROR: /sbin/iptables-restore Failed. logger: socket /dev/log: Connection refused
Reboot of server fixed above.
Tested on
- Debian 10.11
- shorewall 5.2.3.2
iptables-restore: line <some number> failed
You can get this error on reload or restart. Try deleting the .start, .restart or .reload files in /var/lib/shorewall/. They will get regenerated on next shorewall start or shorewall restart
Changes from rules.d directory are not reflected upon reload/restart
If you are adding rules to /etc/shorewall/rules file via embedded shell command i.e.
?SECTION NEW SHELL cat /etc/shorewall/rules.d/*.rules 2> /dev/null || true
and the changes are not applied make sure that AUTOMAKE=No in /etc/shorewall/shorewall.conf. Check the man page for other possible values.
Tested on
- Debian 11.3
- shorewall 5.2.3.4
See also
References
wiki/shorewall_troubleshooting.txt · Last modified: 2022/07/04 11:55 by antisa