Good Evening.
Sort of a related aside regarding ClearOS in trustedgateway mode... Since L7 protocol inspection to block traffic is sort of hit or miss (in my case, strong miss) for the time being... A managed DNS blacklist subscription seems to be the next logical choice, and in some cases a stronger use case.
At this point, I figured I'd give DNSThingy a go... I've noticed that like a few other Marketplace apps... It absolutely doesn't tolerate things running in Transparent Bridge Mode.
It tosses up a "Ooooops: Network interface is invalid."
I've checked the usual suspect locations for a net int reference that wasn't updated, or corrected.. so far no luck..
Anyone have any ideas where to start hunting for this?
Cheers,
Matt.
Sort of a related aside regarding ClearOS in trustedgateway mode... Since L7 protocol inspection to block traffic is sort of hit or miss (in my case, strong miss) for the time being... A managed DNS blacklist subscription seems to be the next logical choice, and in some cases a stronger use case.
At this point, I figured I'd give DNSThingy a go... I've noticed that like a few other Marketplace apps... It absolutely doesn't tolerate things running in Transparent Bridge Mode.
It tosses up a "Ooooops: Network interface is invalid."
I've checked the usual suspect locations for a net int reference that wasn't updated, or corrected.. so far no luck..
Anyone have any ideas where to start hunting for this?
Cheers,
Matt.
In DNSthingy
Share this post:
Responses (2)
-
Accepted Answer
"Ooooops: Network interface is invalid." from the experience here has always indicated there was something in one or more /etc/sysconfig/network-scripts/ifcfg-xxxx files the ClearOS validity checker didn't like. I suspect it only allows a certain number of limited options - have had that message before when I added lines to the files that are perfectly valid in the rhel world, but unfortunately the ClearOS checker know nothing about and considered it an issue. In the early days even adding a comment (a line with a '#' in the first column) would trigger this 'error' situation and the "Oooooops" message - thankfully that was fixed, but am still not convinced that it will correctly pass all possible combinations of rhel valid entries in the ifcfg-xxxxxx files.
See the relevant section in "/usr/share/doc/initscripts-9.37.2/sysconfig.txt" (or whatever doc version you have) for the very extensive list of options.
Have no idea what changes, if any, DNSThingy makes to the ifg-xxxx files - so cannot advise on this.. { must say the name 'DNSThingy' puts me off
} However, as Nick alluded to, if you go outside whatever everybody else does, you will usually end up some time or another finding bug(s) or challenges that were previously unknown as no-one has trodden that exact route before... Not saying this is necessarily the case here, but this is what you are leaving yourself open to... -
Accepted Answer
Please login to post a reply
You will need to be logged in to be able to post a reply. Login using the form on the right or register an account if you are new here.
Register Here »