[zorp-hu] zorp 3.3.6 + libzorpll 3.3.0.12 + Debian 6.0 ujra

Nyika Csaba csabany at freemail.hu
2011. Már. 9., Sze, 13:50:04 CET 

Sziasztok!

Eloszor is koszonom a segitseget!

Sajnos a helyzet valtozatlan, - mind Barina Tamás, mind Kosa Attila javaslatait kiproblatam.
Jelenleg igy nez ki a conf ide vonatkozo resze:

class IntraHttps(PsslProxy):
	class EmbeddedHttp(HttpProxy):
		def config(self):
	 	 HttpProxy.config(self)
		 self.transparent_mode = TRUE

	def config(self):
	 self.server_need_ssl = TRUE
	 self.server_verify_type = SSL_VERIFY_REQUIRED_TRUSTED
	 self.server_ca_directory = '/etc/zorp/ca.d'
	 self.client_need_ssl = TRUE
	 self.client_cert = '/etc/zorp/https/sercer.crt'
	 self.client_key = '/etc/zorp/https/server.key'
	 self.client_verify_type = SSL_VERIFY_NONE
	 self.stack_proxy = self.EmbeddedHttp
	 self.server_verify_depth = 3

A verbose-t 10-re veve a logban (elnezest a hosszert):
Mar  9 13:34:35 firewallnew zorp/zorp_http[9632]: core.debug(0): (nosession): Starting up; verbose_level='0', version='3.3.6', startup_id='1299674075'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.debug(0): (nosession): Starting up; verbose_level='10', version='3.3.6', startup_id='1299674075'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.debug(6): (nosession): System dependant init; sysdep_tproxy='tproxy40'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.debug(7): (szig/listen): Start to listen; fd='10', address='AF_UNIX(/var/run/zorp/zorpctl.zorp_https)'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.debug(6): (szig/thread): thread starting;
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.debug(5): (nosession): Outbound service; zone='intranet', service='intra_http'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.debug(5): (nosession): Outbound service; zone='intranet', service='intra_https'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.debug(5): (nosession): Inbound service; zone='internet', service='*'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.debug(7): (dsp/dispatch:0): Dispatcher on address; local='SA(proto=1,addr=AF_INET(172.16.16.1:50443))', prio='100'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.debug(7): (dsp/dispatch:0): Start to listen; fd='12', address='AF_INET(172.16.16.1:50443)'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.debug(6): (stderr): thread starting;
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.info(4): (nosession): Interface added; if_index='1', if_name='lo', if_flags='73'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.info(4): (nosession): Interface added; if_index='2', if_name='eth0', if_flags='4098'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.info(4): (nosession): Interface added; if_index='3', if_name='eth1', if_flags='4098'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.info(4): (nosession): Interface added; if_index='4', if_name='eth2', if_flags='4098'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.info(4): (nosession): Interface added; if_index='5', if_name='eth3', if_flags='4163'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.info(4): (nosession): Interface added; if_index='6', if_name='eth4', if_flags='4163'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.info(4): (nosession): Address added to interface; if_name='lo', if_addr='127.0.0.1'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.info(4): (nosession): Address added to interface; if_name='eth3', if_addr='10.10.67.1'
Mar  9 13:34:35 firewallnew zorp/zorp_https[9640]: core.info(4): (nosession): Address added to interface; if_name='eth4', if_addr='172.16.16.1'
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.debug(7): (szig/listen): Accept count; accepts='1'
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.dump(8): (szig/conn:0/stream): Reading channel; fd='15', count='37'
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.dump(10): (szig/conn:0/stream): data line 0x0000: 47 45 54 56 41 4C 55 45 20 7A 6F 72 70 2E 69 6E  GETVALUE zorp.in
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.dump(10): (szig/conn:0/stream): data line 0x0010: 66 6F 2E 70 6F 6C 69 63 79 2E 66 69 6C 65 5F 73  fo.policy.file_s
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.dump(10): (szig/conn:0/stream): data line 0x0020: 74 61 6D 70 0A                                   tamp.
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.dump(7): (szig/conn:0/stream): Writing stream; stream='ZStreamBuf', count='11'
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.dump(9): (szig/conn:0/stream): data line 0x0000: 31 32 39 39 36 37 34 30 37 30 0A                 1299674070.
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.dump(8): (szig/conn:0/stream): Writing channel; fd='15', count='11'
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.dump(10): (szig/conn:0/stream): data line 0x0000: 31 32 39 39 36 37 34 30 37 30 0A                 1299674070.
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.dump(8): (szig/conn:0/stream): Reading EOF on channel; fd='15'
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.debug(6): (szig/conn:0/stream): Closing stream; type='ZStreamBuf'
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.debug(6): (szig/conn:0/stream): Closing stream; type='ZStreamLine'
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.debug(6): (szig/conn:0/stream): Closing stream; type='ZStreamFD'
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.accounting(4): (szig/conn:0/stream): accounting info; type='ZStreamFD', duration='0', sent='11', received='37'
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.accounting(4): (szig/conn:0/stream): accounting info; type='ZStreamBuf', duration='0', sent='0', received='0'
Mar  9 13:35:34 firewallnew zorp/zorp_https[9640]: core.accounting(4): (szig/conn:0/stream): accounting info; type='ZStreamLine', duration='0', sent='11', received='36'
Mar  9 13:35:37 firewallnew mpt-statusd: detected non-optimal RAID status
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.debug(7): (szig/listen): Accept count; accepts='1'
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.dump(8): (szig/conn:1/stream): Reading channel; fd='15', count='37'
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.dump(10): (szig/conn:1/stream): data line 0x0000: 47 45 54 56 41 4C 55 45 20 7A 6F 72 70 2E 69 6E  GETVALUE zorp.in
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.dump(10): (szig/conn:1/stream): data line 0x0010: 66 6F 2E 70 6F 6C 69 63 79 2E 66 69 6C 65 5F 73  fo.policy.file_s
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.dump(10): (szig/conn:1/stream): data line 0x0020: 74 61 6D 70 0A                                   tamp.
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.dump(7): (szig/conn:1/stream): Writing stream; stream='ZStreamBuf', count='11'
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.dump(9): (szig/conn:1/stream): data line 0x0000: 31 32 39 39 36 37 34 30 37 30 0A                 1299674070.
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.dump(8): (szig/conn:1/stream): Writing channel; fd='15', count='11'
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.dump(10): (szig/conn:1/stream): data line 0x0000: 31 32 39 39 36 37 34 30 37 30 0A                 1299674070.
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.dump(8): (szig/conn:1/stream): Reading EOF on channel; fd='15'
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.debug(6): (szig/conn:1/stream): Closing stream; type='ZStreamBuf'
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.debug(6): (szig/conn:1/stream): Closing stream; type='ZStreamLine'
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.debug(6): (szig/conn:1/stream): Closing stream; type='ZStreamFD'
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.accounting(4): (szig/conn:1/stream): accounting info; type='ZStreamFD', duration='0', sent='11', received='37'
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.accounting(4): (szig/conn:1/stream): accounting info; type='ZStreamBuf', duration='0', sent='0', received='0'
Mar  9 13:36:34 firewallnew zorp/zorp_https[9640]: core.accounting(4): (szig/conn:1/stream): accounting info; type='ZStreamLine', duration='0', sent='11', received='36'
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.debug(7): (szig/listen): Accept count; accepts='1'
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.dump(8): (szig/conn:2/stream): Reading channel; fd='15', count='37'
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.dump(10): (szig/conn:2/stream): data line 0x0000: 47 45 54 56 41 4C 55 45 20 7A 6F 72 70 2E 69 6E  GETVALUE zorp.in
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.dump(10): (szig/conn:2/stream): data line 0x0010: 66 6F 2E 70 6F 6C 69 63 79 2E 66 69 6C 65 5F 73  fo.policy.file_s
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.dump(10): (szig/conn:2/stream): data line 0x0020: 74 61 6D 70 0A                                   tamp.
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.dump(7): (szig/conn:2/stream): Writing stream; stream='ZStreamBuf', count='11'
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.dump(9): (szig/conn:2/stream): data line 0x0000: 31 32 39 39 36 37 34 30 37 30 0A                 1299674070.
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.dump(8): (szig/conn:2/stream): Writing channel; fd='15', count='11'
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.dump(10): (szig/conn:2/stream): data line 0x0000: 31 32 39 39 36 37 34 30 37 30 0A                 1299674070.
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.dump(8): (szig/conn:2/stream): Reading EOF on channel; fd='15'
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.debug(6): (szig/conn:2/stream): Closing stream; type='ZStreamBuf'
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.debug(6): (szig/conn:2/stream): Closing stream; type='ZStreamLine'
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.debug(6): (szig/conn:2/stream): Closing stream; type='ZStreamFD'
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.accounting(4): (szig/conn:2/stream): accounting info; type='ZStreamFD', duration='0', sent='11', received='37'
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.accounting(4): (szig/conn:2/stream): accounting info; type='ZStreamBuf', duration='0', sent='0', received='0'
Mar  9 13:37:34 firewallnew zorp/zorp_https[9640]: core.accounting(4): (szig/conn:2/stream): accounting info; type='ZStreamLine', duration='0', sent='11', received='36'

Minhta "el sem jutna hozza" semmi...

Koszonettel: Nyika Csaba

További információk a(z) zorp-hu levelezőlistáról