| View previous topic :: View next topic |
| Author |
Message |
Zander_h
n00b
Joined: 12 Aug 2003
Posts: 5
|
 Posted: Sat Aug 30, 2003 6:26 pm Post subject: Please help with Shorewall |
 |
|
Hi. I first installed iptables and set the module so it starts at boot-up. Then I installed and configured shorewall, but when I start it I get these errors:
# shorewall start
Processing /etc/shorewall/params ...
Processing /etc/shorewall/shorewall.conf ...
Starting Shorewall...
Initializing...
Determining Zones...
Zones: net
Validating interfaces file...
Validating hosts file...
Validating Policy file...
Determing Hosts in Zones...
Net Zone: ppp0:0.0.0.0/0
Processing /etc/shorewall/init ...
modprobe: Can't locate module ip_tables
iptables v1.2.8: can't initialize iptables table `nat': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
Processing /etc/shorewall/stop ...
modprobe: Can't locate module ip_tables
iptables v1.2.8: can't initialize iptables table `mangle': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.8: can't initialize iptables table `nat': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.8: can't initialize iptables table `nat': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.8: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.8: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
Processing /etc/shorewall/stopped ...
Terminated
How can I get this firewall to work? Thanks. |
|
| Back to top |
|
 |
JHuizingh
Tux's lil' helper
Joined: 05 Jul 2002
Posts: 100
|
| Posted: Sat Aug 30, 2003 10:13 pm Post subject: |
|
|
You want to make sure that you have all the modules you need compiled with the kernel. I think you can find out which ones those are by googling "iptables howto".
If you have all the correct modules in the kernel, here's another suggestion. A couple months ago I was having problems with iptables using gentoo sources. Somebody told me that gentoo sources had issues with iptables. I tried the same configuration with the vanilla kernel and it worked fine. The gentoo sources may be fixed by now, but they may not... I don't know. |
|
| Back to top |
|
|
ronmon
Veteran
Joined: 15 Apr 2002
Posts: 1043
Location: Key West, FL
|
| Posted: Sun Aug 31, 2003 1:57 am Post subject: |
|
|
| Quote: | | I... set the module so it starts at boot-up. |
Don't load any modules at boot. Shorewall will load the ones that it needs. Basically I select every one except those marked 'experimental' and a few others like ipchains, ipfwadmin and NAT of local connections. |
|
| Back to top |
|
|
plexustech
n00b
Joined: 21 Sep 2003
Posts: 42
Location: Sydney, Australia
|
| Posted: Tue Sep 23, 2003 5:13 am Post subject: |
|
|
Not an answer for you, but I have the very same problem. Any luck so far?
_________________
Idiot Filter: "Ya, we run the C++ operating system on a QNX platform over FDDI twisted pair at 600 MIPS." If they swallow that, hang up. |
|
| Back to top |
|
|
someguy
Guru
Joined: 10 Jul 2003
Posts: 433
Location: (-_-) .::OH_WELL::. (-_-)
|
| Posted: Tue Sep 23, 2003 5:18 am Post subject: |
|
|
get ipcop and setup a gateway it makes it all so much easier
_________________
print pack"C*",split/\D+/,`echo "16iII*o\U@{$/=$z;[(pop,pop,unpack"H*",<>
)]}\EsMsKsN0[lN*1lK[d2%Sa2/d0<X+d*lMLa^*lN%0]dsXx++lMlN/dsM0<J]dsJxp"|dc`
while [ 1 ] ; do echo "*" | telnet ip.of.print.er 9100 ; done |
|
| Back to top |
|
|
|
Networking & Security
