Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

Should I try vanilla-sources to fix iptables?
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Other Things Gentoo
View previous topic :: View next topic  
Author Message
Tahoe_Strider
Apprentice
Apprentice


Joined: 06 Jul 2003
Posts: 152
Location: Amador County, Awarded 9th Best Place to live in Rural America
PostPosted: Wed Jul 16, 2003 3:13 am    Post subject: Should I try vanilla-sources to fix iptables? Reply with quote
OK,

I've tried "make mrproper" and recompiling. I've tried "rm /lib/modules/2.4.20-gentoo-r5" and recompiling...yet nothing seems to get rid of the following when performing insmod:

    Using /lib/modules/2.4.20-gentoo-r5/kernel/net/ipv4/netfilter/ip_tables.o
    /lib/modules/2.4.20-gentoo-r5/kernel/net/ipv4/netfilter/ip_tables.o: unresolved symbol nf_unregister_sockopt_Rsmp_9826e0c8
    /lib/modules/2.4.20-gentoo-r5/kernel/net/ipv4/netfilter/ip_tables.o: unresolved symbol nf_register_sockopt_Rsmp_34fbb854


I've even tried reconfiguring the parameters as both modules and monolithic...still the same problem. I've read that some folks have had better luck w/ vanilla-sources and iptables as opposed to gentoo-sources...any thoughts/insight? Thanks
Back to top
View user's profile Send private message
Petyr
Guru
Guru


Joined: 08 Jan 2003
Posts: 471
Location: San Diego, CA, USA
PostPosted: Wed Jul 16, 2003 5:24 am    Post subject: Reply with quote
couple of people having trouble with iptables lately it seems.... Ah well,
couple sanity checks:

1) When you copied over your newly compiled kernel, did you remember to mount /boot? (I've done this more times than I can count)

2) Did you remember to do make modules_install?

Someone else had some luck with disabling version information (sounds exactly like the problem you're having)
https://forums.gentoo.org/viewtopic.php?t=67619&highlight=

Good luck!

Petyr
Back to top
View user's profile Send private message
Tahoe_Strider
Apprentice
Apprentice


Joined: 06 Jul 2003
Posts: 152
Location: Amador County, Awarded 9th Best Place to live in Rural America
PostPosted: Wed Jul 16, 2003 5:34 am    Post subject: Reply with quote
Yeah...I always double check to make sure my boot partition is mounted. And yes, I religiously run my "make modules" and "make modules_install"...I wish it was that simple. Additionally, I edited my .config file so that CONFIG_MODVERSIONS was not set...Thanks for the link too. I checked that out earlier today...oh well...:(
Back to top
View user's profile Send private message
Jimbow
Guru
Guru


Joined: 18 Feb 2003
Posts: 597
Location: Silver City, NM
PostPosted: Wed Jul 16, 2003 6:04 am    Post subject: Reply with quote
I've used iptables successfully with vanilla-sources, gentoo-sources (2.4.20-r5) and gs-sources. I remember that when I went from vanilla to gentoo some more options appeared. I checked them all and then I had problems. I backed off a bit and then things worked smoothly. Here are the ip-tables kernel options I have turned off with gentoo-sources:
Code:
# CONFIG_IP_NF_AMANDA is not set
# CONFIG_IP_NF_TALK is not set
# CONFIG_IP_NF_RSH is not set
# CONFIG_IP_NF_H323 is not set
# CONFIG_IP_NF_EGG is not set
# CONFIG_IP_NF_CONNTRACK_MARK is not set
# CONFIG_IP_NF_QUAKE3 is not set
# CONFIG_IP_NF_PPTP is not set
# CONFIG_IP_NF_MMS is not set
# CONFIG_IP_NF_CUSEEME is not set
# CONFIG_IP_NF_QUEUE is not set
# CONFIG_IP_NF_MATCH_RPC is not set
# CONFIG_IP_NF_POOL is not set
# CONFIG_IP_NF_MATCH_IPRANGE is not set
# CONFIG_IP_NF_MATCH_RECENT is not set
# CONFIG_IP_NF_MATCH_TIME is not set
# CONFIG_IP_NF_MATCH_DSCP is not set
# CONFIG_IP_NF_MATCH_AH_ESP is not set
# CONFIG_IP_NF_MATCH_LENGTH is not set
# CONFIG_IP_NF_MATCH_TCPMSS is not set
# CONFIG_IP_NF_MATCH_REALM is not set
# CONFIG_IP_NF_MATCH_HELPER is not set
# CONFIG_IP_NF_MATCH_CONNLIMIT is not set
# CONFIG_IP_NF_MATCH_UNCLEAN is not set
# CONFIG_IP_NF_MATCH_STRING is not set
# CONFIG_IP_NF_MATCH_OWNER is not set
# CONFIG_IP_NF_NAT_LOCAL is not set
# CONFIG_IP_NF_NAT_SNMP_BASIC is not set
# CONFIG_IP_NF_TARGET_IMQ is not set
# CONFIG_IP_NF_TARGET_CLASSIFY is not set
# CONFIG_IP_NF_TARGET_ROUTE is not set
# CONFIG_IP_NF_ARPTABLES is not


Some of these might be perfectly fine. I stopped playing around as soon as I got it working. I compiled them into the kernel mainly to avoid cluttering lsmod and also because I am always using firewall software.
_________________
After Perl everything else is just assembly language.
Back to top
View user's profile Send private message
Mnemia
Guru
Guru


Joined: 17 May 2002
Posts: 476
PostPosted: Wed Jul 16, 2003 7:18 am    Post subject: Reply with quote
I'm working on a research project at my university this summer involving iptables, and I also had some problems with the gentoo-sources kernel (which I had always used without problems until very recently). I think some patch in the last couple of versions of gentoo-sources broke something in iptables. I didn't really bother to investigate what particular options or USE flags triggered it but I switched to vanilla-sources (2.4.21 kernel) and now I have no problems whatsoever.
YMMV.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Other Things Gentoo All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2024 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy