[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[suse-security] susefirewall2 problem (SuSE 10.1)



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1



When I start the computer or run SuSEfirewall2 I get some weird errors:

nimrodel:~ # SuSEfirewall2
SuSEfirewall2: Warning: ip6tables does not support state matching. Extended IPv6 support disabled.
SuSEfirewall2: Setting up rules from /etc/sysconfig/SuSEfirewall2 ...
SuSEfirewall2: Firewall customary rules loaded from /etc/sysconfig/scripts/SuSEfirewall2-custom
SuSEfirewall2: batch committing...
iptables-batch v1.3.5: host/network `##' not found
Try `iptables-batch -h' or 'iptables-batch --help' for more information.
SuSEfirewall2: Error: iptables-batch failed, re-running using iptables
iptables v1.3.5: host/network `##' not found
Try `iptables -h' or 'iptables --help' for more information.
iptables v1.3.5: host/network `##' not found
Try `iptables -h' or 'iptables --help' for more information.
iptables v1.3.5: host/network `Type:' not found
Try `iptables -h' or 'iptables --help' for more information.
iptables v1.3.5: host/network `Type:' not found
Try `iptables -h' or 'iptables --help' for more information.
iptables v1.3.5: host/network `string' not found
Try `iptables -h' or 'iptables --help' for more information.
iptables v1.3.5: host/network `string' not found
Try `iptables -h' or 'iptables --help' for more information.
iptables v1.3.5: host/network `##' not found
Try `iptables -h' or 'iptables --help' for more information.
iptables v1.3.5: host/network `##' not found
Try `iptables -h' or 'iptables --help' for more information.
iptables v1.3.5: host/network `Default:' not found
Try `iptables -h' or 'iptables --help' for more information.
iptables v1.3.5: host/network `Default:' not found
Try `iptables -h' or 'iptables --help' for more information.
SuSEfirewall2: Firewall rules successfully set
nimrodel:~ # rcSuSEfirewall2 status
Checking the status of SuSEfirewall2                                  running
nimrodel:~ #


I worry about the "not found" errors. How do I find out what is the exact 
problem? A bug of mine or of SuSE? It does not report the problematic file 
or line.


The configuration is the same I had with 9.3, and it worked with no 
errors, AFAIK.




I'm also getting some strange errors, maybe non related:

Jul 23 13:13:16 nimrodel kernel: SFW2-OUT-ERROR IN= OUT=eth0 
SRC=192.168.1.12 DST=134.76.11.100 LEN=52 TOS=0x00 PREC=0x00 TTL=64 
ID=61663 DF PROTO=TCP SPT=24438 DPT=80 WINDOW=2184 RES=0x00 ACK FIN URGP=0 
OPT (0101080A0002D56B70A5E356)

Jul 23 13:13:18 nimrodel kernel: SFW2-OUT-ERROR IN= OUT=eth0 
SRC=192.168.1.12 DST=134.76.11.100 LEN=52 TOS=0x00 PREC=0x00 TTL=64 
ID=61664 DF PROTO=TCP SPT=24438 DPT=80 WINDOW=2184 RES=0x00 ACK FIN URGP=0 
OPT (0101080A0002D6D370A5E356)

Jul 23 13:13:21 nimrodel kernel: SFW2-OUT-ERROR IN= OUT=eth0 
SRC=192.168.1.12 DST=134.76.11.100 LEN=52 TOS=0x00 PREC=0x00 TTL=64 
ID=61665 DF PROTO=TCP SPT=24438 DPT=80 WINDOW=2184 RES=0x00 ACK FIN URGP=0 
OPT (0101080A0002D9A370A5E356)

Jul 23 13:13:38 nimrodel kernel: SFW2-OUT-ERROR IN= OUT=eth0 
SRC=192.168.1.12 DST=134.76.11.100 LEN=52 TOS=0x00 PREC=0x00 TTL=64 
ID=61667 DF PROTO=TCP SPT=24438 DPT=80 WINDOW=2184 RES=0x00 ACK FIN URGP=0 
OPT (0101080A0002EA8370A5E356)



The remote IP is ftp.gwdg.de. They occur when starting or closing YOU.



- -- 
Cheers,
       Carlos Robinson
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Made with pgp4pine 1.76

iD8DBQFEw1rMtTMYHG2NR9URAn9aAJ9aFh4mvEVf4RQHr3kqkEAYAb7IPwCfVTJj
/qdeTyTRV3vOgjmnC93TcoQ=
=ENV8
-----END PGP SIGNATURE-----


-- 
Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here