Previously, we've ocnfigured our UTMs running in Amazon with a post-install script. This command worked fine when the previous UTMs were built a few months ago, but now there is a new Sophos UTM AMI, and the following attempt to configure masquerading no longer works:
MASQ=$(cat '1', 'class' => 'packetfilter', 'data' => { 'additional_address' => '', 'comment' => '', 'name' => 'from VPC CIDR Private to Public-External', 'source' => 'REF_NetNetVpcCidrPriva', 'source_nat_interface' => 'REF_IntCabPublicexte', 'status' => 1 }, 'hidden' => 0, 'lock' => '', 'nodel' => '', 'ref' => 'REF_PacMasFromVpcCidr', 'type' => 'masq' }
EOF
)
... and then the MASQ variable is stuffed into another confd-clientx.plx command to create a masq rule.
Here is the error I get when I execute the above command:
{
'Aattrs' => [
'class',
'type',
'attr'
],
'Cattrs' => [
'goodclass'
],
'Oattrs' => [
'class',
'type'
],
'attr' => 'source_nat_interface',
'attrs' => [],
'badref' => 'REF_IntCabPublicexte',
'check' => 'input',
'class' => 'packetfilter',
'fatal' => 1,
'format' => 'The %_O object needs %_C objects for the %_A attribute.',
'goodclass' => 'interface',
'msgtype' => 'OBJECT_OBJECT_BADREF',
'name' => 'The masquerading rule object needs interface objects for the outgoing interface attribute.',
'never_hide' => 0,
'ref' => 'REF_PacMasFromVpcCidr',
'type' => 'masq'
}
Unfortunately, the docs for confd-clientx are sparse, so I am struggling to RTFM.
Thanks,
Pete the Pharmboy
This thread was automatically locked due to age.
