* Compiling options for IPTABLES to work.
@ 2003-09-16 8:54 ads nat
2003-09-16 13:15 ` Jeffrey Laramie
0 siblings, 1 reply; 4+ messages in thread
From: ads nat @ 2003-09-16 8:54 UTC (permalink / raw)
To: netfilter
[-- Attachment #1: Type: text/plain, Size: 721 bytes --]
I want to get hands on experience of using iptables, DMZ firewall, DHCP firewall, etc.for which Tutorial says I need to compile kernal with following options OR as modules :
CONFIG_NETFILTER
CONFIG_IP_NF_CONNTRACK
CONFIG_IP_NF_IPTABLES
CONFIG_IP_NF_MATCH_LIMIT
CONFIG_IP_NF_MATCH_STATE
CONFIG_IP_NF_FILTER
CONFIG_IP_NF_NAT
CONFIG_IP_NF_TARGET_LOG
I have installed Redhat Linux 8.0 on server machine which by default installs iptables 1.2.6a.
Do Redhat 8.0 install all these modules. How to check whether these modules are installed or not.
Thanks
---------------------------------
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
[-- Attachment #2: Type: text/html, Size: 911 bytes --]
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: Compiling options for IPTABLES to work.
2003-09-16 8:54 Compiling options for IPTABLES to work ads nat
@ 2003-09-16 13:15 ` Jeffrey Laramie
2003-09-16 13:54 ` ads nat
0 siblings, 1 reply; 4+ messages in thread
From: Jeffrey Laramie @ 2003-09-16 13:15 UTC (permalink / raw)
To: ads nat; +Cc: netfilter
[-- Attachment #1: Type: text/plain, Size: 1072 bytes --]
ads nat wrote:
> I want to get hands on experience of using iptables, DMZ firewall,
> DHCP firewall, etc.for which Tutorial says I need to compile kernal
> with following options OR as modules :
>
>
> *
>
> CONFIG_NETFILTER
>
> *
>
> CONFIG_IP_NF_CONNTRACK
>
> *
>
> CONFIG_IP_NF_IPTABLES
>
> *
>
> CONFIG_IP_NF_MATCH_LIMIT
>
> *
>
> CONFIG_IP_NF_MATCH_STATE
>
> *
>
> CONFIG_IP_NF_FILTER
>
> *
>
> CONFIG_IP_NF_NAT
>
> *
>
> CONFIG_IP_NF_TARGET_LOG
>
> I have installed Redhat Linux 8.0 on server machine which by default
> installs iptables 1.2.6a.
>
> Do Redhat 8.0 install all these modules. How to check whether these
> modules are installed or not.
>
> Thanks
>
The stock Redhat kernels load these routines as modules. Run:
/sbin/lsmod to see which modules are currently loaded. Note that the
module name is not going to be the exact same name as the kernel option
i.e. if kernel option CONFIG_IP_NF_CONNTRACK is loaded as a module it
will be loaded as module ip_conntrack.
Jeff
[-- Attachment #2: Type: text/html, Size: 1677 bytes --]
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: Compiling options for IPTABLES to work.
2003-09-16 13:15 ` Jeffrey Laramie
@ 2003-09-16 13:54 ` ads nat
2003-09-16 14:45 ` Jeffrey Laramie
0 siblings, 1 reply; 4+ messages in thread
From: ads nat @ 2003-09-16 13:54 UTC (permalink / raw)
To: Jeffrey Laramie; +Cc: netfilter
[-- Attachment #1: Type: text/plain, Size: 2603 bytes --]
Following are the modules loaded :
[root@xyz root]# /sbin/lsmod
Module Size Used by Not tainted
sr_mod 18136 2 (autoclean)
soundcore 6532 0 (autoclean)
ipip 8772 1 (autoclean)
autofs 13348 0 (autoclean) (unused)
8139too 17704 2
mii 2156 0 [8139too]
ipt_MASQUERADE 2200 1 (autoclean)
ipt_REDIRECT 1368 1 (autoclean)
iptable_nat 19960 1 (autoclean) [ipt_MASQUERADE ipt_REDIRECT]
ip_conntrack 21244 1 (autoclean) [ipt_MASQUERADE ipt_REDIRECT iptab
le_nat]
iptable_filter 2412 1 (autoclean)
ip_tables 14936 6 [ipt_MASQUERADE ipt_REDIRECT iptable_nat iptab
le_filter]
ide-scsi 10512 1
ide-cd 33608 0
cdrom 33696 0 [sr_mod ide-cd]
mousedev 5524 1
keybdev 2976 0 (unused)
hid 22244 0 (unused)
input 5888 0 [mousedev keybdev hid]
usb-uhci 26188 0 (unused)
ehci-hcd 17480 0 (unused)
usbcore 77024 1 [hid usb-uhci ehci-hcd]
ext3 70368 5
jbd 52212 5 [ext3]
aic7xxx 137140 6
sd_mod 13552 12
scsi_mod 107144 4 [sr_mod ide-scsi aic7xxx sd_mod]
Are these modules O.K. for what I want to do?
Please guide.
Thanks
Jeffrey Laramie <JALaramie@Loudoun-Fairfax.com> wrote:
ads nat wrote:
I want to get hands on experience of using iptables, DMZ firewall, DHCP firewall, etc.for which Tutorial says I need to compile kernal with following options OR as modules :
CONFIG_NETFILTER
CONFIG_IP_NF_CONNTRACK
CONFIG_IP_NF_IPTABLES
CONFIG_IP_NF_MATCH_LIMIT
CONFIG_IP_NF_MATCH_STATE
CONFIG_IP_NF_FILTER
CONFIG_IP_NF_NAT
CONFIG_IP_NF_TARGET_LOG
I have installed Redhat Linux 8.0 on server machine which by default installs iptables 1.2.6a.
Do Redhat 8.0 install all these modules. How to check whether these modules are installed or not.
Thanks
The stock Redhat kernels load these routines as modules. Run: /sbin/lsmod to see which modules are currently loaded. Note that the module name is not going to be the exact same name as the kernel option i.e. if kernel option CONFIG_IP_NF_CONNTRACK is loaded as a module it will be loaded as module ip_conntrack.
Jeff
---------------------------------
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
[-- Attachment #2: Type: text/html, Size: 5780 bytes --]
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: Compiling options for IPTABLES to work.
2003-09-16 13:54 ` ads nat
@ 2003-09-16 14:45 ` Jeffrey Laramie
0 siblings, 0 replies; 4+ messages in thread
From: Jeffrey Laramie @ 2003-09-16 14:45 UTC (permalink / raw)
To: ads nat; +Cc: netfilter
[-- Attachment #1: Type: text/plain, Size: 1736 bytes --]
ads nat wrote:
> Following are the modules loaded :
> [root@xyz root]# /sbin/lsmod
> Module Size Used by Not tainted
> sr_mod 18136 2 (autoclean)
> soundcore 6532 0 (autoclean)
> ipip 8772 1 (autoclean)
> autofs 13348 0 (autoclean) (unused)
> 8139too 17704 2
> mii 2156 0 [8139too]
> ipt_MASQUERADE 2200 1 (autoclean)
> ipt_REDIRECT 1368 1 (autoclean)
> iptable_nat 19960 1 (autoclean) [ipt_MASQUERADE
> ipt_REDIRECT]
> ip_conntrack 21244 1 (autoclean) [ipt_MASQUERADE
> ipt_REDIRECT iptab
> le_nat]
> iptable_filter 2412 1 (autoclean)
> ip_tables 14936 6 [ipt_MASQUERADE ipt_REDIRECT
> iptable_nat iptab
> le_filter]
> ide-scsi 10512 1
> ide-cd 33608 0
> cdrom 33696 0 [sr_mod ide-cd]
> mousedev 5524 1
> keybdev 2976 0 (unused)
> hid 22244 0 (unused)
> input 5888 0 [mousedev keybdev hid]
> usb-uhci 26188 0 (unused)
> ehci-hcd 17480 0 (unused)
> usbcore 77024 1 [hid usb-uhci ehci-hcd]
> ext3 70368 5
> jbd 52212 5 [ext3]
> aic7xxx 137140 6
> sd_mod 13552 12
> scsi_mod 107144 4 [sr_mod ide-scsi aic7xxx sd_mod]
>
> Are these modules O.K. for what I want to do?
> Please guide.
> Thanks
>
The basic modules are loaded. I don't know what you're trying to do, so
I don't know if these are all the modules you need. Does it work?
Jeff
[-- Attachment #2: Type: text/html, Size: 4683 bytes --]
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2003-09-16 14:45 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-09-16 8:54 Compiling options for IPTABLES to work ads nat
2003-09-16 13:15 ` Jeffrey Laramie
2003-09-16 13:54 ` ads nat
2003-09-16 14:45 ` Jeffrey Laramie
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.