"GUI for iptables firewall setup and monitor." I have simply updated an earlier ebuild, it seems to work on my system. This is the first ebuild I have created/submitted. Regards Rusty
Created attachment 47406 [details] firestarter-1.0.1.ebuild ebuild
Created attachment 47407 [details] Source file firestarter-1.0.1.tar.gz
to the maintainer
Does this add the gentoo init scripts?
There is no init script that I know of, the earlier versions didn't have any either. When the firestarter application is run it creates a startup script /etc/firestarter/firestarter.sh I have simply added this startup script (not a gentoo startup script) as shown below: added the following command to /etc/conf.d/local.start /etc/firestarter/firestarter.sh start added the folowing command to /etc/conf.d/local.stop /etc/firestarter/firestarter.sh stop
Created attachment 49903 [details] firestarter-1.0.3.ebuild new ebuild for version 1.0.3. works fine.
excellent! regarding init script, I think having it in local.start is a bit to late in the strat up process. In theory there's fair amount of time when you are unprotected -- which probably won't mean anything but thats not how security works :) I'm fairly busy atm, but ideally I or someone will create an init script that: a) has a config file like /etc/conf.d/firestarter which will lists wait_interfaces or something where you list all your interfaces which you have configured firestarter for b) the init script then waits for these to come up c) once up it fires /etc/firestarter/firestarter.sh start
*** Bug 80153 has been marked as a duplicate of this bug. ***
*** Bug 80686 has been marked as a duplicate of this bug. ***
Using firestarter 1.0.3 I obtain this error: "A proper configuration for Firestarter was not found. If you are running Firestarter from the directory you built it in, run 'make install-data-local' to install a configuration, or simply 'make install' to install the whole program. Firestarter will now close." I run it using root user (su session)
*** Bug 72389 has been marked as a duplicate of this bug. ***
Created attachment 52100 [details] Firestarter 1.0.3 Manifest
Created attachment 52101 [details] Firestarter 1.0.3 Ebuild
Created attachment 52102 [details] Firestarter 1.0.3 Digest
Created attachment 52103 [details] Firestarter 1.0.3 Session Log on Terminal Window
I have obsoleted the 1.0.3 Ebuild because it has some errors. My apologies for the inconvenience.
So wait.. what were the errors? In which version? All of them? Do we revert to Jason Oliveira's version? I'd love to see this in ~amd64 soon :) W
I just tried the 1.0.3 ebuild, it complained about missing configuration files and said I needed run "make install-local-data" (or maby make install-data-local?) ebuilding it with unpack compile install and the going to the work directory and running the make command fixxed it but its probally something that need to be added to the ebuild.
Created attachment 54631 [details] firestarter 1.0.3 ebuild New ebuild to add an Init script and give some install instructions ebuild shange added src_unpack(), src_compile(), src_install() add init script firestarter, pkg_postinst()
Created attachment 54632 [details] firestarter 1.0.3 init script Init script to allow firestarter to be added to sturtup
Created attachment 54633 [details] firestarter 1.0.3 digest firestarter-1.0.3.ebuild digest
Created attachment 54634 [details] firestarter 1.0.3 updated changelog update to firestarter changelog
Comment on attachment 47406 [details] firestarter-1.0.1.ebuild obseleted by ebuild firestarter-1.0.3
Comment on attachment 47407 [details] Source file firestarter-1.0.1.tar.gz obseleted by firestarter-1.0.3.tar.gz
Comment on attachment 54634 [details] firestarter 1.0.3 updated changelog ># ChangeLog for net-firewall/firestarter ># Copyright 2002-2004 Gentoo Foundation; Distributed under the GPL v2 ># $Header: $ > >*firestarter-1.0.3 (29 Jun 2005) > > 28 Mar 2005; Russell Chait <Rusty_Chait@yahoo.com.au>firestarter-1.0.3.ebuild,firestarter: > version bump to 1.0.3 added src_unpack(), src_compile(), src_install(), pkg_postinst() to ebuild > add init script firestarter > > 29 Dec 2004; Ciaran McCreesh <ciaranm@gentoo.org> : > Change encoding to UTF-8 for GLEP 31 compliance > > 28 Sep 2004; Simon Stelling <blubb@gentoo.org> firestarter-0.9.3.ebuild: > added ~amd64 > > 29 Aug 2004; Tom Gall <tgall@gentoo.org> firestarter-0.9.3.ebuild: > added ~ppc64 bug #60780 > > 05 Jun 2004; Bryan Østergaard <kloeri@gentoo.org> > firestarter-0.9.2-r1.ebuild: > Stable on alpha. > > 04 Jun 2004; Michael Sterrett <mr_bones_@gentoo.org> > firestarter-0.8.3.ebuild, firestarter-0.9.2.ebuild, > files/firestarter-0.9.1-gcc2_fixes.patch: > clean out old ebuilds and files > >*firestarter-0.9.3 (04 Jun 2004) > > 04 Jun 2004; Michael Sterrett <mr_bones_@gentoo.org> > firestarter-0.9.3.ebuild: > version bump (bug #52468) > >*firestarter-0.9.2-r1 (06 Dec 2003) > > 06 Dec 2003; foser <foser@gentoo.org> firestarter-0.9.2-r1.ebuild : > Added patch to fix kernel 2.6 detection, patch taken from > reported by James Lademann <jwlademann@myrealbox.com> in #32903 > > 09 Jul 2003; Alastair Tse <liquidx@gentoo.org> firestarter-0.9.1.ebuild, > firestarter-0.9.2.ebuild: > added pkgconfig deps > >*firestarter-0.9.2 (12 Jun 2003) > > 12 Jun 2003; <msterret@gentoo.org> firestarter-0.9.2.ebuild: > version bump > >*firestarter-0.9.1 (31 Jan 2003) > > 11 Mar 2003; Martin Holzer <mholzer@gentoo.org> firestarter-0.8.2.ebuild, > firestarter-0.8.3.ebuild, firestarter-0.9.0.ebuild, > firestarter-0.9.1.ebuild: > changed sys-apps/iptables to net-firewall/iptables > > 04 Mar 2003; Aron Griffis <agriffis@gentoo.org> firestarter-0.9.1.ebuild: > Mark stable on alpha > > 15 Feb 2003; foser <foser@gentoo.org> firestarter-0.9.1.ebuild : > Added gcc2 fixes patch kindly provided by <michael.sterrett@coat.com> (#15461) > > 09 Feb 2003; Martin Holzer <mholzer@gentoo.org> : > Moved from net-misc to net-firewall > > 31 Jan 2003; foser <foser@gentoo.org> firestarter-0.9.1.ebuild : > New gnome2 release > >*firestarter-0.8.3 (15 Oct 2002) > > 15 Oct 2002; Seemant Kulleen <seemant@gentoo.org> firestarter-0.8.3.ebuild > files/digest-firestarter-0.8.3 : > > Version bump for the gnome1 version. > >*firestarter-0.9.0 (31 Jul 2002) > > 07 Oct 2002; foser <foser@gentoo.org> firestarter-0.9.0.ebuild: > Added libgnomeui dependency > > 18 Aug 2002; J.Alberto S.L. <bass@gentoo.org> firestarter-0.9.0.ebuild: > Final version for Gnome 2 > > 31 Jul 2002; J.Alberto S.L. <bass@gentoo.org> firestarter-0.9.0.ebuild: > Beta version, _only_ testing. > >*firestarter-0.8.2 (27 May 2002) > > 09 Oct 2002; foser <foser@gentoo.org> firestarter-0.8.2.ebuild: > Added gnome-panel dep (bug #2487) > > 06 Jul 2002; phoen][x <phoenix@gentoo.org> firestarter-0.8.2.ebuild: > Added KEYWORDS. Renamed Chanelog to ChangeLog. > > 09 Jun 2002; J.Alberto S.L. <bass@gentoo.org> firestarter-0.8.2.ebuild: > fixed minor bug with pixmaps > > 03 Jun 2002; J.Alberto S.L. <bass@gentoo.org> firestarter-0.8.2.ebuild: > Doc creation added > > 01 Jun 2002; J.Alberto S.L. <bass@gentoo.org> firestarter-0.8.2.ebuild: > USE nls variable support > > 01 Jun 2002; Bruce A. Locke <blocke@shivan.org> firestarter-0.8.2.ebuild: > GTK+ dependency fix > > 30 May 2002; J.Alberto S.L. <bass@gentoo.org> firestarter-0.8.2.ebuild: > Fixed problem with gtk. > > 27 May 2002; J.Alberto S.L. <bass@gentoo.org> firestarter-0.8.2.ebuild: > First relase. > > >
Comment on attachment 54634 [details] firestarter 1.0.3 updated changelog ># ChangeLog for net-firewall/firestarter ># Copyright 2002-2004 Gentoo Foundation; Distributed under the GPL v2 ># $Header: $ > >*firestarter-1.0.3 (29 Jun 2005) > > 28 Mar 2005; Russell Chait <Rusty_Chait@yahoo.com.au>firestarter-1.0.3.ebuild,firestarter: > version bump to 1.0.3 added src_unpack(), src_compile(), src_install(), pkg_postinst() to ebuild > add init script firestarter > > 29 Dec 2004; Ciaran McCreesh <ciaranm@gentoo.org> : > Change encoding to UTF-8 for GLEP 31 compliance > > 28 Sep 2004; Simon Stelling <blubb@gentoo.org> firestarter-0.9.3.ebuild: > added ~amd64 > > 29 Aug 2004; Tom Gall <tgall@gentoo.org> firestarter-0.9.3.ebuild: > added ~ppc64 bug #60780 > > 05 Jun 2004; Bryan Ã?stergaard <kloeri@gentoo.org> > firestarter-0.9.2-r1.ebuild: > Stable on alpha. > > 04 Jun 2004; Michael Sterrett <mr_bones_@gentoo.org> > firestarter-0.8.3.ebuild, firestarter-0.9.2.ebuild, > files/firestarter-0.9.1-gcc2_fixes.patch: > clean out old ebuilds and files > >*firestarter-0.9.3 (04 Jun 2004) > > 04 Jun 2004; Michael Sterrett <mr_bones_@gentoo.org> > firestarter-0.9.3.ebuild: > version bump (bug #52468) > >*firestarter-0.9.2-r1 (06 Dec 2003) > > 06 Dec 2003; foser <foser@gentoo.org> firestarter-0.9.2-r1.ebuild : > Added patch to fix kernel 2.6 detection, patch taken from > reported by James Lademann <jwlademann@myrealbox.com> in #32903 > > 09 Jul 2003; Alastair Tse <liquidx@gentoo.org> firestarter-0.9.1.ebuild, > firestarter-0.9.2.ebuild: > added pkgconfig deps > >*firestarter-0.9.2 (12 Jun 2003) > > 12 Jun 2003; <msterret@gentoo.org> firestarter-0.9.2.ebuild: > version bump > >*firestarter-0.9.1 (31 Jan 2003) > > 11 Mar 2003; Martin Holzer <mholzer@gentoo.org> firestarter-0.8.2.ebuild, > firestarter-0.8.3.ebuild, firestarter-0.9.0.ebuild, > firestarter-0.9.1.ebuild: > changed sys-apps/iptables to net-firewall/iptables > > 04 Mar 2003; Aron Griffis <agriffis@gentoo.org> firestarter-0.9.1.ebuild: > Mark stable on alpha > > 15 Feb 2003; foser <foser@gentoo.org> firestarter-0.9.1.ebuild : > Added gcc2 fixes patch kindly provided by <michael.sterrett@coat.com> (#15461) > > 09 Feb 2003; Martin Holzer <mholzer@gentoo.org> : > Moved from net-misc to net-firewall > > 31 Jan 2003; foser <foser@gentoo.org> firestarter-0.9.1.ebuild : > New gnome2 release > >*firestarter-0.8.3 (15 Oct 2002) > > 15 Oct 2002; Seemant Kulleen <seemant@gentoo.org> firestarter-0.8.3.ebuild > files/digest-firestarter-0.8.3 : > > Version bump for the gnome1 version. > >*firestarter-0.9.0 (31 Jul 2002) > > 07 Oct 2002; foser <foser@gentoo.org> firestarter-0.9.0.ebuild: > Added libgnomeui dependency > > 18 Aug 2002; J.Alberto S.L. <bass@gentoo.org> firestarter-0.9.0.ebuild: > Final version for Gnome 2 > > 31 Jul 2002; J.Alberto S.L. <bass@gentoo.org> firestarter-0.9.0.ebuild: > Beta version, _only_ testing. > >*firestarter-0.8.2 (27 May 2002) > > 09 Oct 2002; foser <foser@gentoo.org> firestarter-0.8.2.ebuild: > Added gnome-panel dep (bug #2487) > > 06 Jul 2002; phoen][x <phoenix@gentoo.org> firestarter-0.8.2.ebuild: > Added KEYWORDS. Renamed Chanelog to ChangeLog. > > 09 Jun 2002; J.Alberto S.L. <bass@gentoo.org> firestarter-0.8.2.ebuild: > fixed minor bug with pixmaps > > 03 Jun 2002; J.Alberto S.L. <bass@gentoo.org> firestarter-0.8.2.ebuild: > Doc creation added > > 01 Jun 2002; J.Alberto S.L. <bass@gentoo.org> firestarter-0.8.2.ebuild: > USE nls variable support > > 01 Jun 2002; Bruce A. Locke <blocke@shivan.org> firestarter-0.8.2.ebuild: > GTK+ dependency fix > > 30 May 2002; J.Alberto S.L. <bass@gentoo.org> firestarter-0.8.2.ebuild: > Fixed problem with gtk. > > 27 May 2002; J.Alberto S.L. <bass@gentoo.org> firestarter-0.8.2.ebuild: > First relase. > > >
Created attachment 54796 [details] Updated firstarter changelog Update changelog
Can this be added to the portage tree or is there a problem with the ebuild?
I've tested 1.0.3 ebuild with the initscript and installed fine on my amd64, but at the boot process the firestarter initscript says "External network device eth0 is not ready. Aborting..." seems it's not starting the firewall.
Ebuild 1.0.3 has been working great here on my amd64 box since the first day. This should really get into portage tree
Created attachment 55952 [details] firestarter 1.0.3 init script change init script to start after coldplug
Created attachment 55953 [details] changelog update to changelog to include new init script
In the init script, let's have one "after" line. Also, what is the impact of setups that don't use eth0? Regarding the ebuild: gnome2_pkg_postinst needs to be called in pkg_postinst. It doesn't look to me like there is a need for the src_unpack or src_compile functions in the ebuild.
Created attachment 56040 [details] ebuild for firestarter-1.0.3 gnome2_pkg_postinst added to in pkg_postinst src_unpack and src_compile functions removed from the ebuild changed pkg_postinst einfo
Created attachment 56041 [details] firestarter 1.0.3 init script Combined "after" dependancies to one line. Setups that dont use eth0 should still work since net.* is not a "need" dependency, only an "after" dependency. For systems that use eth0 but dont start it till a later runlevel (Default) they will need to add this init script to that run level (Default)instead of boot. The firestarter init script needs to be started after all devices that the firewall is to operate on are started. I only use eth0 so I'm not sure which other dependancies might need to be added to the "after" line of the depend section.
I'm not sure I agree that the init script should ever be added to the boot runlevel. Why would it not always be added to the default runlevel (This is in regard to the instructions in pkg_postinst)? I imagine that starting the firewall wouldn't be desirable for at least the nonetwork runlevel and possibly the single runlevel.
Created attachment 56127 [details] ebuild for firestarter-1.0.3 Change to pkg_postinst einfo. Instructions now are to add firestarter to default run level, instead of the boot runlevel.
Shouldn't the init script checkrules for all operations that access $FIRESTARTER?
Also, why does the firestarter init script need to be started after serial?
Re:Comment #37 From Mr. Bones. 2005-04-16 14:46 PST ------- Shouldn't the init script checkrules for all operations that access $FIRESTARTER? Reply: The checkrules statement is there only to test for the existence of the file /etc/firestarter/firestarter.sh This file has been generated by the firestarter GUI as the firewall start script and should perform any other necessary checks. I will be pleased to add any other checks to the init script that are deemed necessary / appropriate. Re:Comment #38 From Mr. Bones. 2005-04-16 14:52 PST ------- Also, why does the firestarter init script need to be started after serial? Reply: I wasn't sure which discrepancies to use, net.* is logical, I also thought that if the connection to the net is via a serial device then it would be a good idea to include serial. The same can be said for coldplug, and modules. I felt that it was safe to add them since they are not required by the script. I know that with my system, when firestarter is included in the boot runlevel it should not be started before coldplug.
From skimming other network init scripts, I'd say these are depend() lines you need: need net use logger provide firewall 'need net' should take care of the modules, coldplug, etc. issues. Also, 'provide firewall' seems standard among the firewall init scripts currently in portage.
Created attachment 56714 [details] firestarter 1.0.3 init script I cleaned it up a bit, changed the depend lines, and checked for the script each time it is used.
AFAIK, the "big issues" r related to the "gconf-stuff" thingie ("make install-local-data")
where is the blocker/problem w/ this bump? the 1.0.x is now 6 months old :(
firestarter-1.0.3.ebuild added to portage. It's currently masked for limited testing. Please try it out and report any problems. Thanks.
*** Bug 58673 has been marked as a duplicate of this bug. ***
Portage ebuild runs fine here on ~amd64 (since it's almost identical to latest version from this bug that I was already using, this does not surprise me ;) )
took firestarter-1 out of package.mask.
Firestarter 1.0.3 has run stable on my AMD64 for approximately 2 weeks. It actually runs better (Doesn't freeze up or crash) then the "stable" 0.9.3 version.
This will go stable for x86 in a week so please test and open new bugs for any problems. Thanks.
stable for x86 Have the fun.