https://bugzilla.novell.com/show_bug.cgi?id=340926 Summary: Upgrade of system breaks SuSEfirewall2 if it contains lines with "\" continue line symbol. Product: openSUSE 10.3 Version: Final Platform: Other OS/Version: openSUSE 10.3 Status: NEW Severity: Normal Priority: P5 - None Component: Update Problems AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: robin.listas@telefonica.net QAContact: jsrain@novell.com Found By: --- Symptom: nimrodel:~ # SuSEfirewall2 SuSEfirewall2: Setting up rules from /etc/sysconfig/SuSEfirewall2 ... SuSEfirewall2: Warning: no default firewall zone defined, assuming 'ext' SuSEfirewall2: batch committing... iptables-batch v1.3.8: host/network `##' not found Try `iptables-batch -h' or 'iptables-batch --help' for more information. SuSEfirewall2: Error: iptables-batch failed, re-running using iptables iptables v1.3.8: host/network `##' not found Try `iptables -h' or 'iptables --help' for more information. iptables v1.3.8: host/network `Type:' not found Try `iptables -h' or 'iptables --help' for more information. iptables v1.3.8: host/network `string' not found Try `iptables -h' or 'iptables --help' for more information. iptables v1.3.8: host/network `##' not found Try `iptables -h' or 'iptables --help' for more information. iptables v1.3.8: host/network `Default:' not found Try `iptables -h' or 'iptables --help' for more information. SuSEfirewall2: Firewall rules successfully set Notice it doesn't say the faulty line. The problem is this section: FW_TRUSTED_NETS="192.168.1.11,tcp,ftp 192.168.1.11,tcp,ftp-data \ ## Type: string ## Default: 192.168.1.11,tcp,ssh \ 192.168.1.1,udp,tftp \ 192.168.1.2,tcp,microsoft-ds 192.168.1.2,tcp,netbios-ssn \ 192.168.1.2,udp,netbios-dgm 192.168.1.2,udp,netbios-ns \ 192.168.1.33,tcp,http \ 192.168.1.33,tcp,ssh \ 192.168.1.33,tcp,ftp \ 192.168.1.33,tcp,ftp-data" # 192.168.1.1,udp,tftp --> backups del router. # 192.168.1.2 --> samba para Moria. Notice the three lines inserted in the middle of the definition? I have compared the file with the original in my 10.2 system, preserved in the backup, and I can conclude that it was the upgrade to 10.3 made by YAST who inserted those three lines in there. Removing them solves the problem: nimrodel:~ # SuSEfirewall2 SuSEfirewall2: Setting up rules from /etc/sysconfig/SuSEfirewall2 ... SuSEfirewall2: Warning: no default firewall zone defined, assuming 'ext' SuSEfirewall2: batch committing... SuSEfirewall2: Firewall rules successfully set nimrodel:~ # This same problem was reported in the security list the 23 Jul 2006 - only that time I did not have proof. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.