Hi, I just switched from 2.4.18-pre3 to 2.4.18, I use latest shorewall, iptables 1.2.5: now I get this when starting shorewall: Validating interfaces file... Validating hosts file... Determining Hosts in Zones... Net Zone: eth0:0.0.0.0/0 iptables: libiptc/libip4tc.c:386: do_check: Assertion `h->info.valid_hooks == (1 << 0 | 1 << 3)'' failed. Aborted (core dumped) iptables: libiptc/libip4tc.c:386: do_check: Assertion `h->info.valid_hooks == (1 << 0 | 1 << 3)'' failed. Aborted (core dumped) Terminated any ideas what could be wrong here ? I basicly used the same .config for the kernel, specially for netfilter. thx for any hints, Christophe -- Christophe Zwecker mail: doc@zwecker.de Hamburg, Germany fon: +49 179 3994867 http://www.zwecker.de "Who is General Failure ? And why is he reading my disk ??"
On 15 Apr 2002, Christophe Zwecker wrote:> Hi, > > I just switched from 2.4.18-pre3 to 2.4.18, I use latest shorewall, > iptables 1.2.5: > > now I get this when starting shorewall: > > Validating interfaces file... > Validating hosts file... > Determining Hosts in Zones... > Net Zone: eth0:0.0.0.0/0 > iptables: libiptc/libip4tc.c:386: do_check: Assertion > `h->info.valid_hooks == (1 << 0 | 1 << 3)'' failed. > Aborted (core dumped) > iptables: libiptc/libip4tc.c:386: do_check: Assertion > `h->info.valid_hooks == (1 << 0 | 1 << 3)'' failed. > Aborted (core dumped) > Terminated > > any ideas what could be wrong here ? > > I basicly used the same .config for the kernel, specially for netfilter. >Read the Errata!!!!! -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net
ok, I just installed the rpm from your ftp, the problem stays the same, I dont need to reload the kernel modules, do I ? On Mon, 2002-04-15 at 14:42, Tom Eastep wrote:> Read the Errata!!!!! > -Tom-- Christophe Zwecker mail: doc@zwecker.de Hamburg, Germany fon: +49 179 3994867 http://www.zwecker.de "Who is General Failure ? And why is he reading my disk ??"
On 15 Apr 2002, Christophe Zwecker wrote:> ok, I just installed the rpm from your ftp, the problem stays the same, > I dont need to reload the kernel modules, do I ? >No -- which RPM did you install and what does "iptables -V" show you? -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net
On Mon, 2002-04-15 at 15:20, Tom Eastep wrote:> On 15 Apr 2002, Christophe Zwecker wrote: > > > ok, I just installed the rpm from your ftp, the problem stays the same, > > I dont need to reload the kernel modules, do I ? > > > > No -- which RPM did you install and what does "iptables -V" show you?http://www.shorewall.net/pub/shorewall/iptables-1.2.5-1.i386.rpm [root@fry r]# iptables -V iptables v1.2.5 -- Christophe Zwecker mail: doc@zwecker.de Hamburg, Germany fon: +49 179 3994867 http://www.zwecker.de "Who is General Failure ? And why is he reading my disk ??"
On 15 Apr 2002, Christophe Zwecker wrote:> On Mon, 2002-04-15 at 15:20, Tom Eastep wrote: > > On 15 Apr 2002, Christophe Zwecker wrote: > > > > > ok, I just installed the rpm from your ftp, the problem stays the same, > > > I dont need to reload the kernel modules, do I ? > > > > > > > No -- which RPM did you install and what does "iptables -V" show you? > > http://www.shorewall.net/pub/shorewall/iptables-1.2.5-1.i386.rpm > > [root@fry r]# iptables -V > iptables v1.2.5 >And ''which iptables'' indicates /usr/sbin/iptables? -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net
On Mon, 2002-04-15 at 15:43, Tom Eastep wrote:> And ''which iptables'' indicates /usr/sbin/iptables?goddamn! I had another binary in /sbin/ ... and I call myself an sysadmin - shame :-) thx alot, works fine now best regards, Christophe -- Christophe Zwecker mail: doc@zwecker.de Hamburg, Germany fon: +49 179 3994867 http://www.zwecker.de "Who is General Failure ? And why is he reading my disk ??"
On 15 Apr 2002, Christophe Zwecker wrote:> On Mon, 2002-04-15 at 15:43, Tom Eastep wrote: > > > And ''which iptables'' indicates /usr/sbin/iptables? > > goddamn! I had another binary in /sbin/ ... > > and I call myself an sysadmin - shame :-) >You are not the first sys admin to do that (nor will you be the last) :-) Cheers, -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net