* Unable to use MARK target with iptables-1.3.7
@ 2006-12-13 20:18 Andrew Beverley
0 siblings, 0 replies; 4+ messages in thread
From: Andrew Beverley @ 2006-12-13 20:18 UTC (permalink / raw)
To: netfilter
Hi,
I've just installed iptables 1.3.7. However, when I run:
iptables -t mangle -A POSTROUTING -p tcp --dport 22 -j MARK \
--set-mark 10
I get:
FATAL: Module ip_tables not found.
However, if I drop back to version 1.3.6 all works fine.
To compile I use:
make PREFIX=/usr LIBDIR=/lib BINDIR=/sbin install
There are no compile errors when making. Kernel is 2.6.17.14
Thanks,
Andy Beverley
^ permalink raw reply [flat|nested] 4+ messages in thread
* Unable to use MARK target with iptables-1.3.7
@ 2007-02-07 15:48 Andrew Beverley
2007-02-07 16:03 ` Pablo Neira Ayuso
0 siblings, 1 reply; 4+ messages in thread
From: Andrew Beverley @ 2007-02-07 15:48 UTC (permalink / raw)
To: netfilter-devel; +Cc: Blake Covarrubias
I have sent this to the users list and had no replies, so am sending to
this list. I know of at least one other person having the same problem.
When I try to use the MARK target with iptables 1.3.7:
iptables -t mangle -A POSTROUTING -p tcp --dport 22 -j MARK \
--set-mark 10
I get:
FATAL: Module ip_tables not found.
- ip_tables is compiled into the kernel
- if I change the target to LOG it works okay
- if I drop back to 1.3.6 it works okay
- I have tried kernels 2.6.17.4 and 2.6.18.2
Is this a bug with 1.3.7 or am I doing something wrong?
Andy Beverley
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: Unable to use MARK target with iptables-1.3.7
2007-02-07 15:48 Unable to use MARK target with iptables-1.3.7 Andrew Beverley
@ 2007-02-07 16:03 ` Pablo Neira Ayuso
2007-02-07 16:10 ` Andrew Beverley
0 siblings, 1 reply; 4+ messages in thread
From: Pablo Neira Ayuso @ 2007-02-07 16:03 UTC (permalink / raw)
To: Andrew Beverley; +Cc: Blake Covarrubias, netfilter-devel
Andrew Beverley wrote:
> When I try to use the MARK target with iptables 1.3.7:
>
> iptables -t mangle -A POSTROUTING -p tcp --dport 22 -j MARK \
> --set-mark 10
>
> I get:
>
> FATAL: Module ip_tables not found.
>
> Is this a bug with 1.3.7 or am I doing something wrong?
Weird, this message comes from modprobe that is invoked by iptables.
Does iptables -L -n show the rule that you just inserted?
--
The dawn of the fourth age of Linux firewalling is coming; a time of
great struggle and heroic deeds -- J.Kadlecsik got inspired by J.Morris
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: Unable to use MARK target with iptables-1.3.7
2007-02-07 16:03 ` Pablo Neira Ayuso
@ 2007-02-07 16:10 ` Andrew Beverley
0 siblings, 0 replies; 4+ messages in thread
From: Andrew Beverley @ 2007-02-07 16:10 UTC (permalink / raw)
To: Pablo Neira Ayuso; +Cc: Blake Covarrubias, netfilter-devel
> > When I try to use the MARK target with iptables 1.3.7:
> >
> > iptables -t mangle -A POSTROUTING -p tcp --dport 22 -j MARK \
> > --set-mark 10
> >
> > I get:
> >
> > FATAL: Module ip_tables not found.
> >
> > Is this a bug with 1.3.7 or am I doing something wrong?
>
> Weird, this message comes from modprobe that is invoked by iptables.
> Does iptables -L -n show the rule that you just inserted?
Interesting, yes it does show the rule. I never thought to even check
because I got that nasty error message. If the rule is there then I
assume that everything is working? There's just the text of an error
message.
If it would help, and when I get some time, I can try with iptables as a
module instead of compiled in.
Andy Beverley
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2007-02-07 16:10 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2007-02-07 15:48 Unable to use MARK target with iptables-1.3.7 Andrew Beverley
2007-02-07 16:03 ` Pablo Neira Ayuso
2007-02-07 16:10 ` Andrew Beverley
-- strict thread matches above, loose matches on Subject: below --
2006-12-13 20:18 Andrew Beverley
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.