Такая проблема. Создаю бранмауэр - тип local ip adress 127.0.0.1. Ему присваивается id допустим 5.
Создаю правила файервола - оставляю галку для всех пользователей на включение допустим пишу on на выключение off id бранмауэра ставлю 5. Так вот когда я щёлкаю правой кнопкой на пользователе и делаю ему отколючение/подключение инета и ничего не происходит савсем. В логах ничего не пишет совсем.
Вот rfw.log
Info : Nov 15 01:03:16 UTM5 Logger: New ` Info : ' stream: /netup/utm5/log/rfw.log
Info : Nov 15 01:03:16 UTM5 Logger: New `?Debug : ' stream: /netup/utm5/log/rfw.log
Info : Nov 15 01:03:16 UTM5 Logger: New `?Debug : ' stream: /netup/utm5/log/rfw.log
Info : Nov 15 01:03:16 RFW URFA[plugin]: Worker thread created
Info : Nov 15 01:03:16 RFW URFA[plugin]: Worker thread created
Info : Nov 15 01:03:16 RFW URFA[plugin]: [worker]: Thread created
Info : Nov 15 01:03:16 RFW URFA[plugin]: [worker]: Thread created
?Debug : Nov 15 01:03:16 RFW URFA[plugin]: Sending name: 127.0.0.1
?Debug : Nov 15 01:03:16 RFW URFA[plugin]: Got ping from core. Sending reply...
?Debug : Nov 15 01:03:26 RFW URFA[plugin]: Got ping from core. Sending reply...
А вот что пишется в main.log
ERROR : Nov 15 01:09:44 ModFWMan: No info for FW 5 found
ERROR : Nov 15 01:09:47 ModFWMan: No info for FW 5 found
debug.log -
?Debug : Nov 15 01:12:00 RPCConn[SSL]<halyva@192.168.2.61>: Call: 0x2003
?Debug : Nov 15 01:12:00 UTM5 DBA: Internet for user is already enabled. Nothing to be done.
?Debug : Nov 15 01:12:00 RPCConn[SSL]<halyva@192.168.2.61>: Call finished...
?Debug : Nov 15 01:12:00 RPCConn[SSL]<halyva@192.168.2.61>: Call: 0x2011
?Debug : Nov 15 01:12:00 RPCConn[SSL]<halyva@192.168.2.61>: Call finished...
?Debug : Nov 15 01:12:01 RPCConn[SSL]<halyva@192.168.2.61>: Call: 0x2400
?Debug : Nov 15 01:12:01 DBCtx: SQL SELECT query: SELECT id, group_name FROM groups
?Debug : Nov 15 01:12:01 RPCConn[SSL]<halyva@192.168.2.61>: Call finished...
?Debug : Nov 15 01:12:01 RPCConn[SSL]<halyva@192.168.2.61>: Call: 0x2001
?Debug : Nov 15 01:12:01 RPCConn[SSL]<halyva@192.168.2.61>: Call finished...
?Debug : Nov 15 01:12:03 RPCConn[SSL]<halyva@192.168.2.61>: Call: 0x2003
?Debug : Nov 15 01:12:03 DBCtx: SQL query: UPDATE accounts SET int_status='0' WHERE id='3'
?Debug : Nov 15 01:12:03 BusLogic: BLM(38) pushed (comment: )
?Debug : Nov 15 01:12:03 UTM5 DBA: hw block for account 3
?Debug : Nov 15 01:12:03 RPCConn[SSL]<halyva@192.168.2.61>: Call finished...
?Debug : Nov 15 01:12:03 BusLogic: try to execute 38
?Debug : Nov 15 01:12:03 BusLogic: hw_block_handler with code 38
?Debug : Nov 15 01:12:03 BusLogic: hw_block_handler start bla_user_hw_unblock|bla_user_hw_block
?Debug : Nov 15 01:12:03 DBCtx: SQL SELECT query: SELECT rule_on,rule_off,router_id FROM firewall_rules WHERE is_deleted='0' AND ((uid='3' AND uid!='0') OR is_for_all='1' OR (( tariff_id='1') AND tariff_id!='0'))
?Debug : Nov 15 01:12:03 RPCConn[SSL]<halyva@192.168.2.61>: Call: 0x2011
?Debug : Nov 15 01:12:03 ModFWMan: Ready to execute 1 FW rules for UID 3. State:0
?Debug : Nov 15 01:12:03 DBCtx: SQL SELECT query: SELECT id,router_type,router_ip,login,password,router_comments FROM routers_info WHERE is_deleted='0'
?Debug : Nov 15 01:12:03 ModFWMan: FW rule parse. Setting RULE_ID to <5003> uid <3>
?Debug : Nov 15 01:12:03 ModFWMan: FW rule parse. Substituting ACCOUNT_ID with value <3> original value <0>
?Debug : Nov 15 01:12:03 ModFWMan: FW rule parse. Substituting UBITS with value <32> original value <-1>
?Debug : Nov 15 01:12:03 ModFWMan: FW rule parse. Substituting EMAIL with value <> (obtained from user data)
?Debug : Nov 15 01:12:03 ModFWMan: Exec [off 192.168.3.40] on 5
ERROR : Nov 15 01:12:03 ModFWMan: No info for FW 5 found
?Debug : Nov 15 01:12:03 BusLogic: hw_block_handler end bla_user_hw_unblock|bla_user_hw_block
?Debug : Nov 15 01:12:03 BusLogic: finished unknown
?Debug : Nov 15 01:12:03 RPCConn[SSL]<halyva@192.168.2.61>: Call finished...
?Debug : Nov 15 01:12:03 RPCConn[SSL]<halyva@192.168.2.61>: Call: 0x2400
?Debug : Nov 15 01:12:03 DBCtx: SQL SELECT query: SELECT id, group_name FROM groups
?Debug : Nov 15 01:12:03 RPCConn[SSL]<halyva@192.168.2.61>: Call finished...
?Debug : Nov 15 01:12:03 RPCConn[SSL]<halyva@192.168.2.61>: Call: 0x2001
?Debug : Nov 15 01:12:03 RPCConn[SSL]<halyva@192.168.2.61>: Call finished...
?Debug : Nov 15 01:12:05 RPCConn[SSL]<halyva@192.168.2.61>: Call: 0x2003
?Debug : Nov 15 01:12:05 DBCtx: SQL query: UPDATE accounts SET int_status='1' WHERE id='3'
?Debug : Nov 15 01:12:05 BusLogic: BLM(39) pushed (comment: )
?Debug : Nov 15 01:12:05 UTM5 DBA: hw unblock for account 3
?Debug : Nov 15 01:12:05 RPCConn[SSL]<halyva@192.168.2.61>: Call finished...
?Debug : Nov 15 01:12:05 BusLogic: try to execute 39
?Debug : Nov 15 01:12:05 BusLogic: hw_block_handler with code 39
?Debug : Nov 15 01:12:05 BusLogic: hw_block_handler start bla_user_hw_unblock|bla_user_hw_block
?Debug : Nov 15 01:12:05 DBCtx: SQL SELECT query: SELECT rule_on,rule_off,router_id FROM firewall_rules WHERE is_deleted='0' AND ((uid='3' AND uid!='0') OR is_for_all='1' OR (( tariff_id='1') AND tariff_id!='0'))
?Debug : Nov 15 01:12:05 ModFWMan: Ready to execute 1 FW rules for UID 3. State:1
?Debug : Nov 15 01:12:05 DBCtx: SQL SELECT query: SELECT id,router_type,router_ip,login,password,router_comments FROM routers_info WHERE is_deleted='0'
?Debug : Nov 15 01:12:05 RPCConn[SSL]<halyva@192.168.2.61>: Call: 0x2011
?Debug : Nov 15 01:12:05 ModFWMan: FW rule parse. Setting RULE_ID to <5003> uid <3>
?Debug : Nov 15 01:12:05 ModFWMan: FW rule parse. Substituting ACCOUNT_ID with value <3> original value <0>
?Debug : Nov 15 01:12:05 ModFWMan: FW rule parse. Substituting UBITS with value <32> original value <-1>
?Debug : Nov 15 01:12:05 ModFWMan: FW rule parse. Substituting EMAIL with value <> (obtained from user data)
?Debug : Nov 15 01:12:05 ModFWMan: Exec [on 192.168.3.40] on 5
ERROR : Nov 15 01:12:05 ModFWMan: No info for FW 5 found
?Debug : Nov 15 01:12:05 BusLogic: hw_block_handler end bla_user_hw_unblock|bla_user_hw_block
?Debug : Nov 15 01:12:05 BusLogic: finished unknown
?Debug : Nov 15 01:12:05 RPCConn[SSL]<halyva@192.168.2.61>: Call finished...
?Debug : Nov 15 01:12:05 RPCConn[SSL]<halyva@192.168.2.61>: Call: 0x2400
?Debug : Nov 15 01:12:05 DBCtx: SQL SELECT query: SELECT id, group_name FROM groups
?Debug : Nov 15 01:12:05 RPCConn[SSL]<halyva@192.168.2.61>: Call finished...
?Debug : Nov 15 01:12:05 RPCConn[SSL]<halyva@192.168.2.61>: Call: 0x2001
?Debug : Nov 15 01:12:05 RPCConn[SSL]<halyva@192.168.2.61>: Call finished...
Почему он не может найти правила 5 если они существуют.
utm5_rfw Вообще никак не реагирует на правила.
-
Дельта Сервис
- Сообщения: 69
- Зарегистрирован: Пн фев 28, 2005 13:43
- Контактная информация:
Видно что косяк-то в строчке
ERROR : Nov 15 01:12:03 ModFWMan: No info for FW 5 found
вместо неё должно быть что-то типа:
?Debug : Nov 17 12:14:33 FW@127.0.0.1: Sending [-t nat -A POSTROUTING -s 10.1.1.1/32 -j SNAT --to-source 1.2.3.4
Что значит No info for FW 5 found ? Если Halyva говорит, что в списке брэндмауэров существует запись с id=5 ?
ERROR : Nov 15 01:12:03 ModFWMan: No info for FW 5 found
вместо неё должно быть что-то типа:
?Debug : Nov 17 12:14:33 FW@127.0.0.1: Sending [-t nat -A POSTROUTING -s 10.1.1.1/32 -j SNAT --to-source 1.2.3.4
Что значит No info for FW 5 found ? Если Halyva говорит, что в списке брэндмауэров существует запись с id=5 ?