Topic: Shorewall installation problem...

The content of this topic has been archived on 5 Apr 2018. There are no obvious gaps in this topic, but there may still be some posts missing at the end.

Page 1 of 1

Post #1

vedro

13 Feb 2010, 22:02

Hello

I am new to this forum.
I have installed OpenWRT (8.09.2 - openwrt-brcm-2.4-squashfs.trx) to my Asus WL-500g Deluxe. It works fine. I have added extra memory via USB (added swap & extra /data partiton), I have setted it up to boot at start up..made some settings... So infact, I know myselfe arround openWRT... I am a Linux user so the philosophy is very familiar to me.
The next step is to install shorewall for a better configuration options (as I am used from my other Linux dists). But I have a problem...
I have read the wiki shorewallhowto (http://wiki.openwrt.org/oldwiki/shorewallhowto) and wanted to try install shorewall via opkg but it does not install or it does:
When I type the command:

opkg install shorewall-lite

I get the following:

Installing shorewall-lite (4.0.12-1) to usb...
Downloading http://downloads.openwrt.org/kamikaze/8.09.2/brcm-2.4/packages/shorewall-lite_4.0.12-1_mipsel.ipk
Connecting to downloads.openwrt.org (78.24.191.177:80)
shorewall-lite_4.0.1 100% |***********************************************************************| 25452  --:--:-- ETA
Configuring shorewall-lite
root@zeko:/etc/config#

And this is it.... (it does not download any dependecies packages)
There is no /etc/shorewall directory, nothing in the /etc/init.d/ to indicate shorewall startup script...
The same happens if I try to install shorewall-common package....

What is the recipy for installing shorewall on my system? Which are the packages I need to install?

Ok, in the wiki is a guide how to manualy install shorewall but I would rather do it with opkg (it would save me time).

Thanks in advance

Have a nice day,
Vedro

Post #2

Void Main

13 Feb 2010, 22:11

I run shorewall on 8.09.2 but I didn't install that shorewall package. I have these installed:

root@wrt1:~# opkg list_installed | grep shore
shorewall-common - 4.2.4-1 -
shorewall-shell - 4.2.4-1 -

I'm not exactly sure what is different about the "lite" package than what I have installed but mine is working great with "loc", "net", and "dmz" zones (and soon to be an additional "vpn" zone hopefully).

Post #3

vedro

13 Feb 2010, 23:17

Hello

I have no problem installing packages: shorewall-common/shell:

root@zeko:/etc/config# opkg install shorewall-common
Installing shorewall-common (4.2.4-1) to usb...
Downloading http://downloads.openwrt.org/kamikaze/8.09.2/brcm-2.4/packages/shorewall-common_4.2.4-1_mipsel.ipk
Connecting to downloads.openwrt.org (78.24.191.177:80)
shorewall-common_4.2 100% |***********************************************************************| 78777  00:00:00 ETA
Installing shorewall-shell (4.2.4-1) to usb...
Downloading http://downloads.openwrt.org/kamikaze/8.09.2/brcm-2.4/packages/shorewall-shell_4.2.4-1_mipsel.ipk
Connecting to downloads.openwrt.org (78.24.191.177:80)
shorewall-shell_4.2. 100% |***********************************************************************| 60446  00:00:00 ETA
Configuring shorewall-common
Configuring shorewall-shell
root@zeko:/etc/config#

and the installed packages are:

root@zeko:/etc/config# opkg list_installed | grep shorewall
shorewall-common - 4.2.4-1 -
shorewall-shell - 4.2.4-1 -

So the packages are installed. But where?

root@zeko:/etc/config# cd /etc/shorewall
-ash: cd: can't cd to /etc/shorewall

also:

root@zeko:/etc/config# shorewall status
-ash: shorewall: not found

I don`t understand it. All dependecies should have been met because else opkg would warn, right? (Like I`m used it from apt, from Debian)

Any ideas. I don`t know if I am the one who is doing something wrong (I guess ) or the router is playing games with me

I need some assistance please..

Post #4

Void Main

14 Feb 2010, 00:02

Yes, something is wrong because I definitely have an /etc/shorewall and it's definitely in the package shorewall-common:

root@wrt1:~# opkg files shorewall-common | grep etc
/etc/shorewall/policy
/etc/shorewall/stopped
/etc/shorewall/tcfilters
/etc/shorewall/tcclasses
/etc/shorewall/netmap
/etc/shorewall/initdone
/etc/shorewall/tos
/etc/shorewall/interfaces
/etc/shorewall/continue
/etc/shorewall/rules
/etc/shorewall/routestopped
/etc/shorewall/ipsec
/etc/shorewall/route_rules
/etc/shorewall/started
/etc/shorewall/start
/etc/shorewall/tcdevices
/etc/shorewall/tcrules
/etc/shorewall/stop
/etc/shorewall/Makefile
/etc/shorewall/ecn
/etc/shorewall/init
/etc/shorewall/tunnels
/etc/shorewall/nat
/etc/shorewall/accounting
/etc/shorewall/zones
/etc/shorewall/blacklist
/etc/shorewall/providers
/etc/shorewall/hosts
/etc/shorewall/params
/etc/shorewall/maclist
/etc/shorewall/actions
/etc/shorewall/shorewall.conf
/etc/init.d/shorewall
/etc/shorewall/proxyarp
/etc/shorewall/masq

root@wrt1:~# cd /etc/shorewall
root@wrt1:/etc/shorewall# ls
Makefile            masq                start
accounting          nat                 started
actions             netmap              stop
blacklist           openvpn-status.log  stopped
continue            params              tcclasses
ecn                 policy              tcdevices
hosts               providers           tcfilters
init                proxyarp            tcrules
initdone            route_rules         tos
interfaces          routestopped        tunnels
ipsec               rules               zones
maclist             shorewall.conf

Maybe your openwrt install didn't fully complete and your jffs isn't set up properly?

Post #5

vedro

14 Feb 2010, 00:19

Hello

Maybe your openwrt install didn't fully complete and your jffs isn't set up properly?

How to check that?

root@zeko:/etc/config# df -h
Filesystem                Size      Used Available Use% Mounted on
rootfs                    1.6M      1.6M         0 100% /
/dev/root                 1.6M      1.6M         0 100% /rom
tmpfs                    14.9M   1016.0k     13.9M   7% /tmp
/dev/mtdblock/4           1.7M      1.2M    544.0k  69% /jffs
mini_fo:/jffs             1.6M      1.6M         0 100% /
/dev/scsi/host0/bus0/target0/lun0/part1
                        857.0M      2.5M    811.0M   0% /data

/jffs seems to be filling after new packages are installed...
I have flashed the router via tftp, telneted, have set up the root pass and loggen into the console...

Post #6

vedro

14 Feb 2010, 19:28

Hello

It seems that was something wrong with the installation...
I have reflashed the router and shorewall installation was completed successful.
Have no "rational" explanation what went wrong for the first time.

Thank for the help

Have a nice day,
vedro

The discussion might have continued from here.

Page 1 of 1