Discussion:
[Shorewall-users] Centos7 and shorewall-5.0.14.1-2.el7.noarch.rpm: some files are missing (es. /etc/shorewall/masq)
Dario Lesca
2017-04-26 13:47:32 UTC
Permalink
Like subject say, after install via "yum install shorewall" on Centos7,
the file '/etc/shorewall/masq' (and some other) are missing.

I have investigate and I have discovered that in the spec file masq are
marked %ghost:

$ grep masq rpmbuild/SPECS/shorewall.spec 
%ghost %attr(0644,root,root) /etc/shorewall/masq

[***@s-virt shorewall]# rpm -qlp shorewall-5.0.14.1-2.el7.noarch.rpm|grep masq
/etc/shorewall/masq
/usr/share/man/man5/shorewall-masq.5.gz
[***@s-virt shorewall]# rpm2cpio shorewall-5.0.14.1-2.el7.noarch.rpm |cpio -ivt|grep masq
-rw-r--r-- 1 root root 6687 Dec 21 22:15 ./usr/share/man/man5/shorewall-masq.5.gz
5464 blocks

In this way, the file masq is not installed into /etc/shorewall, only the man page is installed

How to I can resolve this issue?

Many thanks
--
Dario Lesca
(inviato dal mio Linux Fedora 25 Workstation)
Tom Eastep
2017-04-26 15:32:32 UTC
Permalink
Post by Dario Lesca
Like subject say, after install via "yum install shorewall" on
Centos7, the file '/etc/shorewall/masq' (and some other) are
missing.
I have investigate and I have discovered that in the spec file masq
$ grep masq rpmbuild/SPECS/shorewall.spec %ghost
%attr(0644,root,root) /etc/shorewall/masq
shorewall-5.0.14.1-2.el7.noarch.rpm|grep masq /etc/shorewall/masq
rpm2cpio shorewall-5.0.14.1-2.el7.noarch.rpm |cpio -ivt|grep masq
-rw-r--r-- 1 root root 6687 Dec 21 22:15
./usr/share/man/man5/shorewall-masq.5.gz 5464 blocks
In this way, the file masq is not installed into /etc/shorewall,
only the man page is installed
How to I can resolve this issue?
- From the 5.0.14 release notes:

1) /etc/shorewall[6]/masq has been superseded by
/etc/shorewall[6]/snat. The new 'snat' file is similar to most of
the other configuration files in that the first column specifies
the ACTION to be performed, the second contains the SOURCE and so
on.

The 'shorewall[6] update' command will convert an existing masq
file into the equivalent 'snat' file and will rename masq to
masq.bak.

See shorewall[6]-snat(5) for details.

- -Tom
- --
Tom Eastep \ Q: What do you get when you cross a mobster with
Shoreline, \ an international standard?
Washington, USA \ A: Someone who makes you an offer you can't
http://shorewall.net \________________________________________________
Dario Lesca
2017-04-26 16:19:00 UTC
Permalink
    The 'shorewall[6] update' command will convert an existing masq
    file into the equivalent 'snat' file and will rename masq to
    masq.bak.
Then for new installation I must use snat file rather than masq.

Ok, thanks
--
Dario Lesca
(inviato dal mio Linux Fedora 25 Workstation)
Loading...