| View previous topic :: View next topic |
| Author |
Message |
tdphys
n00b
Joined: 10 Oct 2003
Posts: 53
Location: Alberta
|
 Posted: Sat Jan 10, 2004 12:46 am Post subject: iptables help |
 |
|
I'm trying to get iptables running using shorewall..
I followed the instructions for iptables in the security guide, and enable the netfileter modules in make menuconfig.., compiled the kernel.. etc..
emerged iptables
emerged shorewall
but I'm left with:
modprobe: Can't locate module ip_tables
iptables v1.2.8: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
Processing /etc/shorewall/stop ...
modprobe: Can't locate module ip_tables
iptables v1.2.8: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
when I run 'shorewall start'
heres what I enabled in my menuconfig
[*] Network packet filtering (replaces ipchains)
IP: Netfilter Configuration --->
< > Connection tracking (required for masq/NAT)
< > Userspace queueing via NETLINK (EXPERIMENTAL)
<M> IP tables support (required for filtering/masq/NAT)
<M> limit match support
<M> MAC address match support
<M> Packet type match support
<M> netfilter MARK match support
<M> Multiple port match support
<M> TOS match support
<M> ECN match support
<M> DSCP match support
<M> AH/ESP match support
<M> LENGTH match support
<M> TTL match support
< > tcpmss match support
< > Unclean match support (EXPERIMENTAL)
< > Owner match support (EXPERIMENTAL)
<M> Packet filtering
<M> REJECT target support
< > MIRROR target support (EXPERIMENTAL)
<M> Packet mangling
<M> TOS target support
<M> ECN target support
<M> DSCP target support
<M> MARK target support
<M> LOG target support
<M> ULOG target support
<M> TCPMSS target support
<M> ARP tables support
<M> ARP packet filtering
< > ipchains (2.2-style) support
< > ipfwadm (2.0-style) support
Anybody have an Idea..
I assume the modules should be loaded by hotplug..
but I seem to be seriously missing some part of the get ip_tables running process...
Thanks for the help |
|
| Back to top |
|
 |
MighMoS
Guru
Joined: 24 Apr 2003
Posts: 416
Location: @ ~
|
| Posted: Sat Jan 10, 2004 4:48 am Post subject: |
|
|
Sounds stupid, but when you installed the new kernel, did you do | Code: | $ make modules_install
$ modules-update |
Cause I've freaked over that before....
_________________
jabber: MighMoS@jabber.org
localhost # export HOME=`which heart` |
|
| Back to top |
|
|
tdphys
n00b
Joined: 10 Oct 2003
Posts: 53
Location: Alberta
|
| Posted: Sat Jan 10, 2004 5:24 am Post subject: |
|
|
I did the # make modules_install
and the # modules-update
I can't find anything in the lib/modules that seem to relate to iptables either..
so I wonder if the modules didn't come in the gaming-sources emerge? |
|
| Back to top |
|
|
|
Networking & Security
