| View previous topic :: View next topic |
| Author |
Message |
COuder
n00b
Joined: 04 Jan 2004
Posts: 2
Location: Finland
|
 Posted: Sun Jan 04, 2004 7:01 pm Post subject: ipt_TTL |
 |
|
| Could somebody tell me, is there a ipt_TTL module in new 2.6.0-gentoo kernel? Or maybe I'm just blind, cos I can't find it... |
|
| Back to top |
|
 |
Mnemia
Guru
Joined: 17 May 2002
Posts: 476
|
| Posted: Mon Jan 05, 2004 10:58 am Post subject: |
|
|
I'm not sure about the Gentoo kernel because I don't use it, but that module is definitely in the 2.6.0 vanilla kernel, so I'd guess it's in 2.6.0-gentoo as well. You can look in the | Code: | | /usr/src/linux/net/ipv4/netfilter |
directory for the file
If it exists there then your kernel has it.
In my kernel the option for it is under Device Drivers->Networking Support->Networking Options->Network packet filtering (replaces ipchains)->IP: Netfilter Configuration->IP Tables support. |
|
| Back to top |
|
|
COuder
n00b
Joined: 04 Jan 2004
Posts: 2
Location: Finland
|
| Posted: Mon Jan 05, 2004 8:03 pm Post subject: |
|
|
Yes, that ipt_ttl module is in my kernel, but in my iptables script
this line gives me an error:
$IPT -t mangle -A OUTPUT -o $INET_IFACE -j TTL --ttl-set 128
iptables: No chain/target/match by that name
modprobe ipt_ttl is in my script and lsmod shows that it's loaded.
I get error in /var/log/everything....
[modprobe] FATAL: Module ipt_TTL not found.
So, I thought if there should be two ttl modules(ipt_ttl, ipt_TTL) in kernel. But there is not I have checked several times.
Anyway could somebody tell me how do I get this TTL -setting work? |
|
| Back to top |
|
|
Crg
Guru
Joined: 29 May 2002
Posts: 345
Location: London
|
| Posted: Mon Jan 05, 2004 11:31 pm Post subject: |
|
|
| COuder wrote: |
So, I thought if there should be two ttl modules(ipt_ttl, ipt_TTL) in kernel. But there is not I have checked several times.
|
That's right there is 2 ttl modules around. One is a match and one is a target. Only one (the match) is in the vanilla 2.6 kernel.
| COuder wrote: |
Anyway could somebody tell me how do I get this TTL -setting work?
|
You either have to wait for iptables team to release a patch-o-matic for 2.6 (which they claim to be doing soon), patch it in yourself by hand. |
|
| Back to top |
|
|
Mnemia
Guru
Joined: 17 May 2002
Posts: 476
|
| Posted: Tue Jan 06, 2004 12:02 am Post subject: |
|
|
| Sorry I misunderstood your question C0uder. I'm betting however (if you're familiar with C programming) that as mentioned above you could pretty easily hack the TTL target module into the kernel. I've written new modules for iptables before and it was not difficult. I'd just use patch-o-matic to get the module you need in a 2.4 kernel, and then copy the source over to 2.6 and hack on it and the makesfiles in order to get it to compile. Shouldn't be too hard at all since you'll have the whole source already. |
|
| Back to top |
|
|
|
Networking & Security
