In the firehol script, the command is hardcoded as /usr/sbin/ip - in gentoo, it resides in /sbin/ip. I've provided a patch to fix this. When I start firehol (firehol start), I cannot stop it - it complains: io firehol # firehol stop * ERROR: "iptables" has not yet been started. This is obvious, as firehol just puts in some iptables rules, but doesn't start the init-script Reproducible: Always Steps to Reproduce: 1. 2. 3.
Created attachment 47106 [details, diff] Fixes the hardcoded-path problem. I'll report that upstream
Benjamin: Please use Gentoo Linux -> Component: Ebuilds. Infrastructure is not the correct addressee.
That was a wrong click - sorry about that
It seems this is already fixed in the latest version 1.214, which is still marked unstable in Gentoo. Which Version of firehol are you using? Please run 'firehol -v' and report the first few lines of output that contain the version-number. Also the output of 'emerge info' could be useful. You can also try the latest unstable version by running 'USE="~x86" emerge firehol'. I will try to mark firehol-1.214 stable if it works for you and no other issues are reported.
After some more investigation I marked the latest version of firehol-1.214 stable. After this is available on the mirrors please try this and reopen the bug if it still does not work.
