[Firehol-support] Adding services to firehol

shi ryu shiryu38 at gmail.com
Fri Aug 15 10:41:25 BST 2008 

Hi,

I've added

client_speakadmin_ports="any" and all errors are gone. THANKS COSTA

But if I define one single client port (which does not make sense, but for
the sake of it) like

client_speakadmin_ports="tcp/14535"

then I get those errors :

+++++++++++++++++++++++++++++++++++++++++++++++
--------------------------------------------------------------------------------
ERROR   : # 1.
WHAT    : A runtime command failed to execute (returned error 2).
SOURCE  : line 42 of /etc/firehol/firehol.conf
COMMAND : /sbin/iptables -t filter -A in_internet_speakadmin_s8 -p tcp
--sport tcp/14535 --dport 14534 -m state --state NEW\,ESTABLISHED -j ACCEPT
OUTPUT  :

iptables v1.3.6: invalid port/service `tcp/14535' specified
Try `iptables -h' or 'iptables --help' for more information.



--------------------------------------------------------------------------------
ERROR   : # 2.
WHAT    : A runtime command failed to execute (returned error 2).
SOURCE  : line 42 of /etc/firehol/firehol.conf
COMMAND : /sbin/iptables -t filter -A out_internet_speakadmin_s8 -p tcp
--sport 14534 --dport tcp/14535 -m state --state ESTABLISHED -j ACCEPT
OUTPUT  :

iptables v1.3.6: invalid port/service `tcp/14535' specified
Try `iptables -h' or 'iptables --help' for more information.

+++++++++++++++++++++++

Any idea why iptables doesn't like the tcp 14535 ?

BR,


2008/8/15 shi ryu <shiryu38 at gmail.com>

> oki thanks,
>
> so if I get you right it works for vnc and webmin because, those services
> already exist as std services in firehol and as such their variables are
> already defined, right ?
>
>
>
> 2008/8/15 Costa Tsaousis <costa at tsaousis.gr>
>
> O/H shi ryu ??????:
>>
>>> server_speakadmin_ports="tcp/14534"
>>>
>>> server speakadmin accept
>>>
>>>  Please define the client_speakadmin_ports variable.
>> FireHOL matches both server and client traffic.
>>
>> Costa
>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.firehol.org/pipermail/firehol-support/attachments/20080815/ac7dfbc3/attachment-0003.html>

More information about the Firehol-support mailing list