| View previous topic :: View next topic |
| Author |
Message |
Yamakasi
Apprentice
Joined: 28 Sep 2002
Posts: 201
|
 Posted: Sun Jun 15, 2003 8:10 pm Post subject: Kernel Panic after enable iptables in the Kernel |
 |
|
Hi all,
I got a weird thing.
I got a new gentoo box, and I wanted to install a firewall with iptables. So I have enabled iptable in the kernel (2.4.19-gentoo-r10)
| Code: |
Networking option --> Network packet filtering (replace ipchains )
|
and
| Code: |
Ip: Netfilter Configuration --> "I have choose everything as built-in, I didnt choose Experimental modules"
|
then I did the usual stuff
| Code: | | make dep && make clean bzImage modules modules_install |
| Code: | | cp /usr/src/linux/arch/i386/boot/bzImage /boot |
umounted everything and reboot
And then, when rebooting, it stops this error message
| Code: | kernel: Unable to handle kernel NULL pointer dereference at virtual address
00000000
kernel: printing eip:
kernel: 00000000
kernel: *pde = 00000000
kernel: Oops: 0000
kernel: CPU: 0
kernel: EIP: 0010:[<00000000>]
kernel: EFLAGS: 00010206
kernel: eax: 00000000 ebx: c1091954 ecx: 00000000 edx: c1091954
kernel: esi: fffffff4 edi: c1298780 ebp: 00001000 esp: c71b9f38
kernel: ds: 0018 es: 0018 ss: 0018
kernel: Process squid (pid: 698, stackpage=c71b9000)
kernel: Stack: c01234b8 c1298780 c1091954 00000000 00001000 ffffffea
c1298780 00002000
kernel: bfffdc64 00001000 c1091954 c70b0564 c71b9f84 c1246c7c
00000001 00000000
kernel: 00000000 c3df50fc 00000000 c1091954 00000000 00000000
c3df5144 c3df50a0 |
so I have disabled iptables module in the kernel, and then everything went fine.
Anyone see that before?
Thx all
[/code] |
|
| Back to top |
|
 |
dberkholz
Retired Dev
Joined: 18 Mar 2003
Posts: 1008
Location: Minneapolis, MN, USA
|
| Posted: Mon Jun 16, 2003 7:05 pm Post subject: |
|
|
| If you check what happened right before the panic and disabled only that part, you could probably make the rest of iptables work fine. |
|
| Back to top |
|
|
r.j.hall
n00b
Joined: 06 Feb 2003
Posts: 53
Location: London
|
| Posted: Wed Jun 18, 2003 9:59 am Post subject: |
|
|
I have a similer problem on two completely different systems. The last thing before the Oops is something about netfilter loading then it all goes pear shaped. I am trying to find the cause with trial and error but it takes a long time to go through the options and re compile after each small change. I am 95% certain it is caused by one of the netfilter options, probably in the IP Tables Support sub section.
If anyone actually knows what they are doing I would appreciate some help as I am just flailing around in the dark hoping to strike some dumb luck 
_________________
--- --- --- --- --- --- --- --- --- --- --- --- --- --- ---
You've read it.
You can't unread it!
--- --- --- --- --- --- --- --- --- --- --- --- --- --- --- |
|
| Back to top |
|
|
drizzt
Guru
Joined: 21 Jul 2002
Posts: 428
|
| Posted: Fri Jun 20, 2003 11:57 pm Post subject: |
|
|
I got the same problem.
The solution is simple: use kernel 2.4.19.
2.4.20 has problems if a connection is closed with tcp-reset-option (which is mostly the case).
_________________
People don't have to earn my respect. I offer my respect to them, but be careful to lose my respect... |
|
| Back to top |
|
|
dberkholz
Retired Dev
Joined: 18 Mar 2003
Posts: 1008
Location: Minneapolis, MN, USA
|
| Posted: Sat Jun 21, 2003 12:04 am Post subject: |
|
|
| drizzt wrote: | I got the same problem.
The solution is simple: use kernel 2.4.19.
2.4.20 has problems if a connection is closed with tcp-reset-option (which is mostly the case). |
Or 2.4.21... =)
BTW, I also think R.A. Salvatore is a great author. |
|
| Back to top |
|
|
sschlueter
Guru
Joined: 26 Jul 2002
Posts: 578
Location: Dortmund, Germany
|
| Posted: Sun Jun 22, 2003 10:16 am Post subject: |
|
|
| drizzt wrote: | | 2.4.20 has problems if a connection is closed with tcp-reset-option (which is mostly the case). |
Now that I've read this statement two times already I would like to say that there are no known problems specific to kernel 2.4.20 and iptables. There must be another reason for the problems you have experienced. |
|
| Back to top |
|
|
Teardrop
Apprentice
Joined: 21 Oct 2002
Posts: 176
|
| Posted: Tue Sep 30, 2003 10:45 am Post subject: |
|
|
any update on that? i have the same problem.... 
cya Teardrop
[UPDATE] resolved! disable RPC Match Support. |
|
| Back to top |
|
|
axa
n00b
Joined: 17 Jun 2003
Posts: 51
Location: Taiwan
|
| Posted: Thu Oct 09, 2003 3:46 am Post subject: |
|
|
yup!!! i got the same question ...
i disable RPC Match Support , then re-compile my kernel.
Booting smoothly... 
| Teardrop wrote: | any update on that? i have the same problem....
cya Teardrop
[UPDATE] resolved! disable RPC Match Support. |
_________________
Trust & Unique... |
|
| Back to top |
|
|
|
Networking & Security
