Iptables help

ekinskofer · n00b Joined: 07 May 2004 Posts: 59

hey guys,

I've tried to get iptables on my box now for a day or so and I'm having a hard time with it.

emerged iptables, recompiled and installed my kernal, set all the use flags correctly (or so I think) and I'm getting the following:

modprobe ip_tables
/lib/modules/2.4.26-gentoo-r9/kernel/net/ipv4/netfilter/ip_tables.o: /lib/modules/2.4.26-gentoo-r9/kernel/net/ipv4/netfilter/ip_tables.o: unresolved symbol nf_unregister_sockopt
/lib/modules/2.4.26-gentoo-r9/kernel/net/ipv4/netfilter/ip_tables.o: /lib/modules/2.4.26-gentoo-r9/kernel/net/ipv4/netfilter/ip_tables.o: unresolved symbol nf_register_sockopt
/lib/modules/2.4.26-gentoo-r9/kernel/net/ipv4/netfilter/ip_tables.o: insmod /lib/modules/2.4.26-gentoo-r9/kernel/net/ipv4/netfilter/ip_tables.o failed
/lib/modules/2.4.26-gentoo-r9/kernel/net/ipv4/netfilter/ip_tables.o: insmod ip_tables failed

any thoughts? I'm new at linux so any help is great

thanks!

To · Posted: Wed Oct 13, 2004 8:51 am Post subject:

boot with the new kernel and do an emerge iptables again, this should fix it.

Tó
_________________

------------------------------------------------
Linux Gandalf 3.2.35-grsec
Gentoo Base System version 2.2
------------------------------------------------

ekinskofer · n00b Joined: 07 May 2004 Posts: 59

hmm... I guess I tried everything but this.. I'll give this a go when I get home..

thanks!

ekinskofer · n00b Joined: 07 May 2004 Posts: 59

still getting the same errors..

did a make clean, make dep, make bzImage, modules, modules install, copied new kernal to boot, rebooted, re-emerged iptables, modprobe ip_tables... same error messages as below..

what step am I missing?

thanks in advance.

E

NiklasH · Posted: Thu Oct 14, 2004 8:11 am Post subject:

iptables is started via /etc/init.d/iptables {start|stop|restart}. You shouldn't normally have to modprobe.
Does that work? Also, just in case: have you compiled in netfilter (which is iptables' real name) support in your kernel?
_________________
Banana Republic

To · Posted: Thu Oct 14, 2004 8:46 am Post subject:

Do you have netfilter support activated on you new kernel config?

Tó
_________________

------------------------------------------------
Linux Gandalf 3.2.35-grsec
Gentoo Base System version 2.2
------------------------------------------------

splooge · l33t Joined: 30 Aug 2002 Posts: 636

ekinskofer · n00b Joined: 07 May 2004 Posts: 59

hey guys,

I'm still having a problem here..

checked my kernel setup and I've toggled pretty much everything under the netfilter section. Except:

Amanda protocol support
userspace queing
nat of local connections
ipchains 2.2 style
ipfwadm

also if I go to /etc/init.d/iptables start, gives me:

* Not starting iptables. First create some rules then run
* /etc/init.d/iptables save

so even if I try to at the command line do something simple like iptables -F I get the previous errors..

regarding the mount /boot.. I'm pretty sure that this is done when I compile the new kernel, copy to /boot and then reboot.. correct?

thanks for all the help guys.. hungry to start playing with this.. just gotta get past this hurdle.

cheers.

splooge · l33t Joined: 30 Aug 2002 Posts: 636

Spockmeat · n00b Joined: 05 Sep 2004 Posts: 39

well, if you just do a :
/etc/init.d/iptables save
/etc/init.d/iptables start

it will save a blank file for you, and start up iptables with that blank file, so then you should be able to simply add rules using
/sbin/iptables

chack the man for the specifics of the rules commands.