r_quincy
2003-Sep-11 19:30 UTC
[Shorewall-users] Re: Shorewall will not start under linux 2.4.21 Re: Shorewall-users Digest, Vol 10, Issue 26
Phil, Joshua and others, Yes. through investigation, I came to know that iptables is part kernel- ware and part userspace binary. the latter piece must be complied against the proper kernel sources to ensure compatibility with the running kernel. also, iptables normally generates shared libraries; you can opt to compile it monolithically if you have a dedicated router/firewall, for instance. =I just wrestled with this same exact problem for several hours earlier today... You need to ensure that the iptables you have matches the kernel version (ie. it may have been compiled against certain kernel header files). So, the iptables you have for 2.4.20 probably won''t work with 2.4.21... Also could be a modules issue... masq modules compiled for 2.4.20 probably won''t work with 2.4.21... phil On Thu, 11 Sep 2003, r_quincy wrote:> Shorewall refuses to start under custom kernel 2.4.21. It complains of> invalid iptables argument when DNAT and Masquerading rules are invoked.> relevant pieces of the kernel .config are included for reference > (notably,> CONFIG_IP_NF_NAT_LOCAL=y). Shorewall seems to work fine under LEAF > Bering> stock linux 2.4.20. if i have not supplied all information and > correctly,> please reply with required details.On Thu, 11 Sep 2003 07:17:17 -0700 > (PDT), <shorewall-users-request@lists.shorewall.net> wrote:> Send Shorewall-users mailing list submissions to > shorewall-users@lists.shorewall.net > > To subscribe or unsubscribe via the World Wide Web, visit > http://lists.shorewall.net/mailman/listinfo/shorewall-users > or, via email, send a message with subject or body ''help'' to > shorewall-users-request@lists.shorewall.net > > You can reach the person managing the list at > shorewall-users-owner@lists.shorewall.net > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of Shorewall-users digest..." >-- "Nothing can harm you more than your own undisciplined thoughts." Dhammapada, Thoughts