Hello everyone
new on nethserver I encounter a bug on the firewall console that webvirtmgr here (after the update Kernel release
3.10.0-327.36.1.el7.x86_64):
Check firewall rules
Checking using Shorewall 5.0.8.2…
Processing /etc/shorewall/params …
Processing /etc/shorewall/shorewall.conf…
Loading Modules…
Checking /etc/shorewall/zones…
Checking /etc/shorewall/interfaces…
Checking /etc/shorewall/hosts…
Determining Hosts in Zones…
WARNING: *** blue is an EMPTY ZONE ***
Locating Action Files…
Checking /etc/shorewall/policy…
Running /etc/shorewall/initdone…
Adding Anti-smurf Rules
Adding rules for DHCP
Checking TCP Flags filtering…
Checking Kernel Route Filtering…
Checking Martian Logging…
Checking MAC Filtration – Phase 1…
Checking /etc/shorewall/rules…
Checking /etc/shorewall/action.NFQBY for chain NFQBY…
ERROR: The separator for a port range is ‘:’, not ‘-’ (5900-5950) /etc/shorewall/rules (line 228)
Try “config setprop webvirtmgr-console TCPPorts 5900:5950,16509,6080” to change the - to :
then " expand-template /etc/shorewall/rules"
then " systemctl restart shorewall.service"
I should point out that I had this problem since the Beta version Mayo and from the updated version Bruschetta I could finally see a log display about it! (miam)
@davidep, @alefattorini we have a little bug in the webvirtmgr-package. After installation the template generates a wrong firewall rule with a portrange 5900-5950 instead of 5900:5950 because of a wrong databaseentry. Who is the right handle this?