With a little side of applesauce...

Monday, October 25, 2010

shorewall - Rule "ACCEPT fw net ALL" is a POLICY

If you get the following error when upgrading shorewall on Debian:
Checking /etc/shorewall/rules...
WARNING -- Rule "ACCEPT fw net ALL " is a POLICY
-- and should be moved to the policy file
Checking Actions...


Simply comment out this line in /etc/shorewall/rules:
#
# ACCEPT $FW net ALL


And, add this line to the top of your policy list in /etc/shorewall/policy:

#SOURCE DEST POLICY LOG LIMIT:BURST
# LEVEL
#
$FW net ACCEPT

No comments: