Fw: Problem with CONNMARK

All of lore.kernel.org
 help / color / mirror / Atom feed

* Fw: Problem with CONNMARK
@ 2004-10-29  5:37 Tomek Macioszek
  2004-10-29  7:15 ` George Alexandru Dragoi
  2004-10-29 12:54 ` Jason Opperisano
  0 siblings, 2 replies; 4+ messages in thread
From: Tomek Macioszek @ 2004-10-29  5:37 UTC (permalink / raw)
  To: Netfilter

Hi!
I have problems with use target CONNMARK. When I type command :
iptables -j CONNMARK -h
output gives me  information that iptables is compiled with this options, 
but when I use command like this i.e.:
iptables -t mangle -A PREROUTING -p tcp -j CONNMARK --restore-mark
system couldn't do this. It write to me :
iptables: No chain/target/match by that name

My system: FEDORA 2
KERNEL: 2.6.5 ( compiled with target CONNMARK)
IPTABLET: v 1.2.9.
What is wrong wiht it??
Sorry for my English
Best regards
Tomek 

^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: Fw: Problem with CONNMARK
  2004-10-29  5:37 Fw: Problem with CONNMARK Tomek Macioszek
@ 2004-10-29  7:15 ` George Alexandru Dragoi
  2004-10-29 12:54 ` Jason Opperisano
  1 sibling, 0 replies; 4+ messages in thread
From: George Alexandru Dragoi @ 2004-10-29  7:15 UTC (permalink / raw)
  To: netfilter

You need to get the latest iptables source and recompile it against
the kernel source you are running.


On Fri, 29 Oct 2004 07:37:07 +0200, Tomek Macioszek <tomekm@cea.pl> wrote:
> Hi!
> I have problems with use target CONNMARK. When I type command :
> iptables -j CONNMARK -h
> output gives me  information that iptables is compiled with this options,
> but when I use command like this i.e.:
> iptables -t mangle -A PREROUTING -p tcp -j CONNMARK --restore-mark
> system couldn't do this. It write to me :
> iptables: No chain/target/match by that name
> 
> My system: FEDORA 2
> KERNEL: 2.6.5 ( compiled with target CONNMARK)
> IPTABLET: v 1.2.9.
> What is wrong wiht it??
> Sorry for my English
> Best regards
> Tomek
> 
> 


-- 
Bla bla


^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: Fw: Problem with CONNMARK
  2004-10-29  5:37 Fw: Problem with CONNMARK Tomek Macioszek
  2004-10-29  7:15 ` George Alexandru Dragoi
@ 2004-10-29 12:54 ` Jason Opperisano
  2004-10-29 12:59   ` Jason Opperisano
  1 sibling, 1 reply; 4+ messages in thread
From: Jason Opperisano @ 2004-10-29 12:54 UTC (permalink / raw)
  To: netfilter

On Fri, 2004-10-29 at 01:37, Tomek Macioszek wrote:
> Hi!
> I have problems with use target CONNMARK. When I type command :
> iptables -j CONNMARK -h
> output gives me  information that iptables is compiled with this options, 
> but when I use command like this i.e.:
> iptables -t mangle -A PREROUTING -p tcp -j CONNMARK --restore-mark
> system couldn't do this. It write to me :
> iptables: No chain/target/match by that name
> 
> My system: FEDORA 2
> KERNEL: 2.6.5 ( compiled with target CONNMARK)
> IPTABLET: v 1.2.9.
> What is wrong wiht it??
> Sorry for my English
> Best regards
> Tomek 

it means the "iptables" command (/sbin/iptables) on FC2 has been
compiled with awareness of the CONNMARK target, but your kernel does not
have support for it
(ls /lib/modules/`uname -r`/kernel/net/ipv4/netfilter/ipt_CONNMARK.ko)

you need to grab patch-o-matic from:
http://netfilter.org/files/patch-o-matic-ng-20040621.tar.bz2

and follow the instructions.  a summary:

        cd /path/to/pom
        export KERNEL_DIR="/path/to/kernel_src"
        export IPTABLES_DIR="/path/to/iptables_src"
        ./runme pending
        ./runme extra/CONNMARK
        cd $KERNEL_DIR && make menuconfig [...]
        cd $IPTABLES_DIR && make && make install

-j

-- 
Jason Opperisano <opie@817west.com>



^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: Fw: Problem with CONNMARK
  2004-10-29 12:54 ` Jason Opperisano
@ 2004-10-29 12:59   ` Jason Opperisano
  0 siblings, 0 replies; 4+ messages in thread
From: Jason Opperisano @ 2004-10-29 12:59 UTC (permalink / raw)
  To: netfilter

On Fri, 2004-10-29 at 08:54, Jason Opperisano wrote:
>         cd $IPTABLES_DIR && make && make install

heh--left out the part where you grab the iptables source as well:

http://netfilter.org/files/iptables-1.2.11.tar.bz2

-j

-- 
Jason Opperisano <opie@817west.com>



^ permalink raw reply	[flat|nested] 4+ messages in thread

end of thread, other threads:[~2004-10-29 12:59 UTC | newest]

Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-10-29  5:37 Fw: Problem with CONNMARK Tomek Macioszek
2004-10-29  7:15 ` George Alexandru Dragoi
2004-10-29 12:54 ` Jason Opperisano
2004-10-29 12:59   ` Jason Opperisano

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.