Shorewall will not restart after a system reboot after applying system upgrades
Clash Royale CLAN TAG#URR8PPP up vote
0
down vote
favorite
My issue with shorewall-5.0.4 is it will not restart after
a system reboot after applying system upgrades.
The system:
- Raspberry Pi 3 B
- Ubuntu 16.04, Ma'Te desktop environment
- Two USB/Ethernet dongles
The firewall/router topology:
- On-board eth is the WAN
- USB/Eths are two separate LAN networks but both set as the same zone in shorewall
I have to do the following to get the firewall up and running after a system upgrade:
shorewall stop
shorewall clear
iptables -F
iptables -X
iptables -L (to verify)
(using the desktop)
Shutdown the external eth0
Shutdown the internal eth1
Shutdown the internal eth2
enable the external eth0
shorewall compile
shorewall start
shorewall save
verify connectivity using Chromium->website, pings
enable the internal eth1
enable the internal eth2
Only then does masquerading work again.
Anybody offer any suggestions, recommendations?
Thanks in advance.
firewall
edited Apr 12 at 14:26
Android Dev
10.4k63257
asked Apr 12 at 14:20
John Rose
143
add a comment |Â
up vote
0
down vote
favorite
My issue with shorewall-5.0.4 is it will not restart after
a system reboot after applying system upgrades.
The system:
- Raspberry Pi 3 B
- Ubuntu 16.04, Ma'Te desktop environment
- Two USB/Ethernet dongles
The firewall/router topology:
- On-board eth is the WAN
- USB/Eths are two separate LAN networks but both set as the same zone in shorewall
I have to do the following to get the firewall up and running after a system upgrade:
shorewall stop
shorewall clear
iptables -F
iptables -X
iptables -L (to verify)
(using the desktop)
Shutdown the external eth0
Shutdown the internal eth1
Shutdown the internal eth2
enable the external eth0
shorewall compile
shorewall start
shorewall save
verify connectivity using Chromium->website, pings
enable the internal eth1
enable the internal eth2
Only then does masquerading work again.
Anybody offer any suggestions, recommendations?
Thanks in advance.
firewall
edited Apr 12 at 14:26
Android Dev
10.4k63257
asked Apr 12 at 14:20
John Rose
143
add a comment |Â
up vote
0
down vote
favorite
up vote
0
down vote
favorite
My issue with shorewall-5.0.4 is it will not restart after
a system reboot after applying system upgrades.
The system:
- Raspberry Pi 3 B
- Ubuntu 16.04, Ma'Te desktop environment
- Two USB/Ethernet dongles
The firewall/router topology:
- On-board eth is the WAN
- USB/Eths are two separate LAN networks but both set as the same zone in shorewall
I have to do the following to get the firewall up and running after a system upgrade:
shorewall stop
shorewall clear
iptables -F
iptables -X
iptables -L (to verify)
(using the desktop)
Shutdown the external eth0
Shutdown the internal eth1
Shutdown the internal eth2
enable the external eth0
shorewall compile
shorewall start
shorewall save
verify connectivity using Chromium->website, pings
enable the internal eth1
enable the internal eth2
Only then does masquerading work again.
Anybody offer any suggestions, recommendations?
Thanks in advance.
firewall
edited Apr 12 at 14:26
Android Dev
10.4k63257
asked Apr 12 at 14:20
John Rose
143
My issue with shorewall-5.0.4 is it will not restart after
a system reboot after applying system upgrades.
The system:
- Raspberry Pi 3 B
- Ubuntu 16.04, Ma'Te desktop environment
- Two USB/Ethernet dongles
The firewall/router topology:
- On-board eth is the WAN
- USB/Eths are two separate LAN networks but both set as the same zone in shorewall
I have to do the following to get the firewall up and running after a system upgrade:
shorewall stop
shorewall clear
iptables -F
iptables -X
iptables -L (to verify)
(using the desktop)
Shutdown the external eth0
Shutdown the internal eth1
Shutdown the internal eth2
enable the external eth0
shorewall compile
shorewall start
shorewall save
verify connectivity using Chromium->website, pings
enable the internal eth1
enable the internal eth2
Only then does masquerading work again.
Anybody offer any suggestions, recommendations?
Thanks in advance.
firewall
firewall
edited Apr 12 at 14:26
Android Dev
10.4k63257
asked Apr 12 at 14:20
John Rose
143
edited Apr 12 at 14:26
Android Dev
10.4k63257
asked Apr 12 at 14:20
John Rose
143
edited Apr 12 at 14:26
Android Dev
10.4k63257
edited Apr 12 at 14:26
Android Dev
10.4k63257
edited Apr 12 at 14:26
Android Dev
10.4k63257
10.4k63257
asked Apr 12 at 14:20
John Rose
143
asked Apr 12 at 14:20
John Rose
143
asked Apr 12 at 14:20
John Rose
143
143
add a comment |Â
add a comment |Â
active
oldest
votes
active
oldest
votes
active
oldest
votes
active
oldest
votes
active
oldest
votes
Â
draft saved
draft discarded
Â
draft saved
draft discarded
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e)
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom))
StackExchange.using('gps', function() StackExchange.gps.track('embedded_signup_form.view', location: 'question_page' ); );
$window.unbind('scroll', onScroll);
;
$window.on('scroll', onScroll);
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1024384%2fshorewall-will-not-restart-after-a-system-reboot-after-applying-system-upgrades%23new-answer', 'question_page');
);
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e)
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom))
StackExchange.using('gps', function() StackExchange.gps.track('embedded_signup_form.view', location: 'question_page' ); );
$window.unbind('scroll', onScroll);
;
$window.on('scroll', onScroll);
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e)
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom))
StackExchange.using('gps', function() StackExchange.gps.track('embedded_signup_form.view', location: 'question_page' ); );
$window.unbind('scroll', onScroll);
;
$window.on('scroll', onScroll);
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
var $window = $(window),
onScroll = function(e)
var $elem = $('.new-login-left'),
docViewTop = $window.scrollTop(),
docViewBottom = docViewTop + $window.height(),
elemTop = $elem.offset().top,
elemBottom = elemTop + $elem.height();
if ((docViewTop elemBottom))
StackExchange.using('gps', function() StackExchange.gps.track('embedded_signup_form.view', location: 'question_page' ); );
$window.unbind('scroll', onScroll);
;
$window.on('scroll', onScroll);
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password