John Hedge
2003-Jul-09 04:08 UTC
[Shorewall-users] mangle error using Shorewall v 1.4.5 on kernel 2.4.18-bf2.4-sun4u
I''ve installed Shorewall on my Ultra1 running Woody (2.4.18-bf2.4-sun4u). I''m getting the following error message when I try to start Shorewall: "can''t initialize iptables table `mangle'': Table does not exist (do you need to insmod?) Perhaps iptables or your kernel needs to be updated." (The version of iptables is the latest for Woody; i.e. 1.2.6a) What is the ''mangle'' table and if I need it where do I go for it, please? Thanks, John PS. By the way, the triple nic firewall example seems to be engaged in some way. I''ve not been able to test it completely but ping is certainly disabled!
Tom Eastep
2003-Jul-09 06:48 UTC
[Shorewall-users] mangle error using Shorewall v 1.4.5 on kernel 2.4.18-bf2.4-sun4u
On Wed, 2003-07-09 at 04:07, John Hedge wrote:> I''ve installed Shorewall on my Ultra1 running Woody > (2.4.18-bf2.4-sun4u). > > > > I''m getting the following error message when I try to start Shorewall: > > "can''t initialize iptables table `mangle'': Table does not exist (do you > need to insmod?) > Perhaps iptables or your kernel needs to be updated." > > (The version of iptables is the latest for Woody; i.e. 1.2.6a)Which is irrelevant since it is a kernel module that you are missing.> > What is the ''mangle'' table and if I need it where do I go for it, > please? >The mangle table is used for: a) Setting TOS values (/etc/shorewall/tos) b) Trapping incoming packets with destination addresses listed in /etc/shorewall/rfc1918. c) Marking packets as specified in /etc/shorewall/tcrules. If your kernel doesn''t include mangle table support, you can suppress Shorewall''s use of the table by setting MANGLE_ENABLED=No in /etc/shorewall/shorewall.conf. -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net
John Hedge
2003-Jul-10 01:30 UTC
[Shorewall-users] mangle error using Shorewall v 1.4.5 onkernel 2.4.18-bf2.4-sun4u
Thanks for the help Tom. I discovered ''modconf'' and your manual gave me clear instructions on which modules to load. John> -----Original Message----- > From: Tom Eastep [mailto:teastep@shorewall.net] > Sent: Wednesday, July 09, 2003 11:48 PM > To: John Hedge > Cc: shorewall-users@lists.shorewall.net > Subject: Re: [Shorewall-users] mangle error using Shorewall v 1.4.5onkernel> 2.4.18-bf2.4-sun4u > > On Wed, 2003-07-09 at 04:07, John Hedge wrote: > > I''ve installed Shorewall on my Ultra1 running Woody > > (2.4.18-bf2.4-sun4u). > > > > > > > > I''m getting the following error message when I try to startShorewall:> > > > "can''t initialize iptables table `mangle'': Table does not exist (doyou> > need to insmod?) > > Perhaps iptables or your kernel needs to be updated." > > > > (The version of iptables is the latest for Woody; i.e. 1.2.6a) > > Which is irrelevant since it is a kernel module that you are missing. > > > > > What is the ''mangle'' table and if I need it where do I go for it, > > please? > > > > The mangle table is used for: > > a) Setting TOS values (/etc/shorewall/tos) > b) Trapping incoming packets with destination addresses listed in > /etc/shorewall/rfc1918. > c) Marking packets as specified in /etc/shorewall/tcrules. > > If your kernel doesn''t include mangle table support, you can suppress > Shorewall''s use of the table by setting MANGLE_ENABLED=No in > /etc/shorewall/shorewall.conf. > > -Tom > -- > Tom Eastep \ Shorewall - iptables made easy > Shoreline, \ http://shorewall.net > Washington USA \ teastep@shorewall.net