Vieri Di Paola
2016-10-10 16:57:37 UTC
Hi,
I'm getting the folloowing error when I 'shorewall check':
ERROR: Invalid IPSEC Option (192.168.151.48) SHELL@/etc/shorewall/masq
My offending line in /etc/shorewall/masq:
?SHELL echo "\$OVPN_MASQ"
/etc/shorewall/params:
OVPN_STATIC_IP[client1]=192.168.151.48
OVPN_MASQ_IP[client1]=10.215.144.48
OVPN_STATIC_IP[client2]=192.168.151.45
OVPN_CLIENT_LIST=( client1 client2 )
[...]
for OVPN_CLIENT in ${OVPN_CLIENT_LIST[@]}; do
OVPN_MASQ="${OVPN_MASQ}
$IF1 ${OVPN_STATIC_IP[$OVPN_CLIENT]} ${OVPN_MASQ_IP[$OVPN_CLIENT]}
$IF2 ${OVPN_STATIC_IP[$OVPN_CLIENT]} ${OVPN_MASQ_IP[$OVPN_CLIENT]}
$IF3 ${OVPN_STATIC_IP[$OVPN_CLIENT]} ${OVPN_MASQ_IP[$OVPN_CLIENT]}"
fi
done
echo "${OVPN_MASQ}" > /tmp/OVPN_MASQ
-----
If I comment out the offending line in masq file and restart shorewall:
# cat /tmp/OVPN_MASQ
enp0s8 192.168.151.48 10.215.144.48
enp2s0f0 192.168.151.48 10.215.144.48
enp2s0f1 192.168.151.48 10.215.144.48
I'm not sure what my mistake is.
Vieri
I'm getting the folloowing error when I 'shorewall check':
ERROR: Invalid IPSEC Option (192.168.151.48) SHELL@/etc/shorewall/masq
My offending line in /etc/shorewall/masq:
?SHELL echo "\$OVPN_MASQ"
/etc/shorewall/params:
OVPN_STATIC_IP[client1]=192.168.151.48
OVPN_MASQ_IP[client1]=10.215.144.48
OVPN_STATIC_IP[client2]=192.168.151.45
OVPN_CLIENT_LIST=( client1 client2 )
[...]
for OVPN_CLIENT in ${OVPN_CLIENT_LIST[@]}; do
OVPN_MASQ="${OVPN_MASQ}
$IF1 ${OVPN_STATIC_IP[$OVPN_CLIENT]} ${OVPN_MASQ_IP[$OVPN_CLIENT]}
$IF2 ${OVPN_STATIC_IP[$OVPN_CLIENT]} ${OVPN_MASQ_IP[$OVPN_CLIENT]}
$IF3 ${OVPN_STATIC_IP[$OVPN_CLIENT]} ${OVPN_MASQ_IP[$OVPN_CLIENT]}"
fi
done
echo "${OVPN_MASQ}" > /tmp/OVPN_MASQ
-----
If I comment out the offending line in masq file and restart shorewall:
# cat /tmp/OVPN_MASQ
enp0s8 192.168.151.48 10.215.144.48
enp2s0f0 192.168.151.48 10.215.144.48
enp2s0f1 192.168.151.48 10.215.144.48
I'm not sure what my mistake is.
Vieri