All of lore.kernel.org
 help / color / mirror / Atom feed
* xt_SECMARK: unable to map security context 'httpcontext (error)
@ 2013-06-03 17:12 Kevin Wilson
  2013-06-13 15:13 ` Daniel Wagner
  0 siblings, 1 reply; 2+ messages in thread
From: Kevin Wilson @ 2013-06-03 17:12 UTC (permalink / raw)
  To: netfilter

Hi,
I am trying in Ubuntu 13.04 to run this:

 -
modprobe xt_SECMARK
than:
iptables -t mangle -A PREROUTING -p tcp --dport 80 -j SECMARK --selctx httpconte

And I get:
iptables: No chain/target/match by that name.

syslog says:
Jun  3 20:09:48 amd kernel: [ 3269.413962] xt_SECMARK: unable to map
security context 'httpcontext

what should I do ?

Kernel:
3.8.0-19-generic
iptables v1.4.12


regards,
Kevin

^ permalink raw reply	[flat|nested] 2+ messages in thread
* Re: xt_SECMARK: unable to map security context 'httpcontext (error)
  2013-06-03 17:12 xt_SECMARK: unable to map security context 'httpcontext (error) Kevin Wilson
@ 2013-06-13 15:13 ` Daniel Wagner
  0 siblings, 0 replies; 2+ messages in thread
From: Daniel Wagner @ 2013-06-13 15:13 UTC (permalink / raw)
  To: Kevin Wilson; +Cc: netfilter

Hi Kevin,

On 06/03/2013 07:12 PM, Kevin Wilson wrote:
> Hi,
> I am trying in Ubuntu 13.04 to run this:
>
>   -
> modprobe xt_SECMARK
> than:
> iptables -t mangle -A PREROUTING -p tcp --dport 80 -j SECMARK --selctx httpconte
>
> And I get:
> iptables: No chain/target/match by that name.
>
> syslog says:
> Jun  3 20:09:48 amd kernel: [ 3269.413962] xt_SECMARK: unable to map
> security context 'httpcontext
>
> what should I do ?

IIRC, you need to specify the complete SELinux context, e.g.

system_u:object_r:user_home_t

HTH,
daniel

^ permalink raw reply	[flat|nested] 2+ messages in thread
end of thread, other threads:[~2013-06-13 15:13 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2013-06-03 17:12 xt_SECMARK: unable to map security context 'httpcontext (error) Kevin Wilson
2013-06-13 15:13 ` Daniel Wagner

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.