fast activation error handling #22

ktsaou · 2014-03-12T22:14:03Z

In fast activation mode, if it fails it should at least print the offending line that broke the firewall.

iptables-restore does provide the line number.

ktsaou · 2014-03-12T22:25:07Z

I have just greped the line.

Normaly we should have better error control by detecting the configuration command that generated the wrong line. This requires a lot of re-writing though.

ktsaou · 2014-03-12T22:26:07Z

@philwhineray I have not tested this in ipv6.
Could you please check it?

…mark for issue #23

philwhineray · 2014-05-10T07:18:15Z

I can confirm the offending line is correctly reported with an IPv6 error too.

To get the original line can we add comments to the generated iptables-restore file linking back to the original firehol.conf line?

ktsaou · 2014-05-17T13:17:06Z

I guess comments will do it.

ktsaou added a commit that referenced this issue Mar 12, 2014

fixes issues #22 and #23

fe40dbc

ktsaou closed this as completed Mar 12, 2014

ktsaou reopened this Mar 12, 2014

ktsaou added a commit that referenced this issue Mar 13, 2014

added support for failed lines detection for issue #22, improved conn…

46955f9

…mark for issue #23

philwhineray added enhancement firehol labels Oct 11, 2015

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fast activation error handling #22

fast activation error handling #22

ktsaou commented Mar 12, 2014

ktsaou commented Mar 12, 2014

ktsaou commented Mar 12, 2014

philwhineray commented May 10, 2014

ktsaou commented May 17, 2014

fast activation error handling #22

fast activation error handling #22

Comments

ktsaou commented Mar 12, 2014

ktsaou commented Mar 12, 2014

ktsaou commented Mar 12, 2014

philwhineray commented May 10, 2014

ktsaou commented May 17, 2014