Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

Guarddog and iptables quick question [SOLVED]
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
playahater
Guru
Guru


Joined: 02 Jul 2005
Posts: 382
Location: Serbia
PostPosted: Mon Oct 17, 2005 2:46 pm    Post subject: Guarddog and iptables quick question [SOLVED] Reply with quote
I have guarddog .. and have configured all permission protocols for iptables .. and when I want to save configuration .. it sais:
Code:
Using iptables.
Resetting firewall rules.
Loading kernel modules.
FATAL: Module ip_conntrack_irc not found.
Setting kernel parameters.
FATAL: Module ip_conntrack_ftp not found.
Configuring firewall rules.
Finished.


Have three questions ..
First- Is guarddog or better say iptables working OK ..
Second - If not .. do i need to recompile kernel in order to fix it or is there any other solution??
Third - Do I need to do "rc-update add iptables default" .. in order to have firewall security uppon boot .. or it is working without it ?? (maybe dumb question .. but .. i had to ask :) )
_________________
http://droopia.net

Last edited by playahater on Sat Oct 29, 2005 10:55 pm; edited 1 time in total
Back to top
View user's profile Send private message
nlindblad
Guru
Guru


Joined: 30 Jun 2005
Posts: 476
Location: Lund, Sweden
PostPosted: Mon Oct 17, 2005 3:53 pm    Post subject: Reply with quote
I can answer the third at least: yes, after you've set the rules for iptables, use the command:
Code:
iptables-save


That will save your rules, and the command:
Code:
rc-update add iptables default


Will make them apply at every boot.
Back to top
View user's profile Send private message
magic919
Advocate
Advocate


Joined: 17 Jun 2005
Posts: 2182
Location: Berkshire, UK
PostPosted: Mon Oct 17, 2005 6:55 pm    Post subject: Reply with quote
I'd reconfig and build a new kernel. But you could build modules and load those.

Then it should all work.
Back to top
View user's profile Send private message
playahater
Guru
Guru


Joined: 02 Jul 2005
Posts: 382
Location: Serbia
PostPosted: Wed Oct 19, 2005 12:57 pm    Post subject: Reply with quote
Aha .. OK .. but .. are iptables running correctly now .. or not .. ??
Am I protected .. or not .. ?
I`ll try to make only neccesarry modules .. :)
_________________
http://droopia.net
Back to top
View user's profile Send private message
nlindblad
Guru
Guru


Joined: 30 Jun 2005
Posts: 476
Location: Lund, Sweden
PostPosted: Wed Oct 19, 2005 1:38 pm    Post subject: Reply with quote
playahater wrote:
Aha .. OK .. but .. are iptables running correctly now .. or not .. ??
Am I protected .. or not .. ?
I`ll try to make only neccesarry modules .. :)


Look at current rules using:
Code:
iptables -L
Back to top
View user's profile Send private message
playahater
Guru
Guru


Joined: 02 Jul 2005
Posts: 382
Location: Serbia
PostPosted: Wed Oct 19, 2005 2:31 pm    Post subject: Reply with quote
Code:

Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination


During the boot .. i saw the red dot :) beside iptables line .. and some kind of warning .. something like ..
"no rules for iptables" .. init.d was mentioned too .. but didn`t see what exactly was written .. :)

any thoughts ??? :) .. how to fix it ??
_________________
http://droopia.net
Back to top
View user's profile Send private message
magic919
Advocate
Advocate


Joined: 17 Jun 2005
Posts: 2182
Location: Berkshire, UK
PostPosted: Wed Oct 19, 2005 2:37 pm    Post subject: Reply with quote
You need to sort out the kernel modules.

Then do the rules.

Then save them - which it will prompt you to do if you /etc/init.d/iptables restart.

Then you are sorted.
Back to top
View user's profile Send private message
playahater
Guru
Guru


Joined: 02 Jul 2005
Posts: 382
Location: Serbia
PostPosted: Wed Oct 19, 2005 3:38 pm    Post subject: Reply with quote
OK .. Thanx .. but one more thing ..
can you point me to some "building just modules" site tutorial ??
I thought i know to bild only neccesary modules bu .. i think don`t ..
as far as i have figured out .. i need to cd into the /usr/src/linux/blablabla ..ipcontrack .. and type make modules and make modules install .. and then just add those modules to startup modules config .. and then everytnng shout work just fine .. right ?? .. after that .. i can configure iptables without any problem ..
correct ??
_________________
http://droopia.net
Back to top
View user's profile Send private message
magic919
Advocate
Advocate


Joined: 17 Jun 2005
Posts: 2182
Location: Berkshire, UK
PostPosted: Wed Oct 19, 2005 3:51 pm    Post subject: Reply with quote
Try this:-

http://gentoo-wiki.com/HOWTO_Iptables_for_newbies
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy