Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
qube 2 ip tables issue
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Gentoo on Alternative Architectures
View previous topic :: View next topic  
Author Message
godish
n00b
n00b


Joined: 05 Oct 2004
Posts: 50
Location: Boston MA

PostPosted: Mon Oct 02, 2006 8:45 pm    Post subject: qube 2 ip tables issue Reply with quote

I am setting a qube 2 up to share the internet and do other misc operations at work. Right now i have it setup to use squid/dante to provide socks connection for all the computers on the intranet. Now my issue is, i still want to be able to use vnc to manage the computers remotly. When i goto install iptables, it gets this far.... and stops. I let it sit for about 1 day so far and nothing! (I know the qube 2 is slow, and it does say please wait... but... 8O )

Code:
Qube / # emerge gshield
Calculating dependencies... done!
>>> Emerging (1 of 3) net-firewall/iptables-1.3.5-r1 to /
>>> checking ebuild checksums ;-)
>>> checking auxfile checksums ;-)
>>> checking miscfile checksums ;-)
>>> checking iptables-1.3.5.tar.bz2 ;-)
>>> Unpacking source...
>>> Unpacking iptables-1.3.5.tar.bz2 to /var/tmp/portage/iptables-1.3.5-r1/work
 * Applying install_ipv6_apps.patch ...                                                                                                                [ ok ]
 * Applying install_all_dev_files.patch-1.3.1 ...                                                                                                      [ ok ]
 * Applying grsecurity-1.2.8-iptables.patch-1.3.1 ...                                                                                                  [ ok ]
 * Applying iptables-1.3.1-compilefix.patch ...                                                                                                        [ ok ]
>>> Source unpacked.
>>> Compiling source in /var/tmp/portage/iptables-1.3.5-r1/work/iptables-1.3.5 ...
-O2
Making dependencies: please wait...


Any help would be greatly Appriciated :)
_________________
Nobody makes me bleed my own blood... NOBODY!
Back to top
View user's profile Send private message
Redhatter
Retired Dev
Retired Dev


Joined: 20 Sep 2003
Posts: 548
Location: Brisbane, QLD, Australia

PostPosted: Tue Oct 03, 2006 3:16 am    Post subject: Reply with quote

That is bizzare indeed. It shouldn't take that long.

Code:
qube ~ # emerge -a iptables

These are the packages that would be merged, in order:

Calculating dependencies... done!
[ebuild   R   ] net-firewall/iptables-1.3.5-r1

Would you like to merge these packages? [Yes/No] yes
>>> Emerging (1 of 1) net-firewall/iptables-1.3.5-r1 to /
>>> checking ebuild checksums ;-)
>>> checking auxfile checksums ;-)
>>> checking miscfile checksums ;-)
>>> checking iptables-1.3.5.tar.bz2 ;-)
>>> Unpacking source...
>>> Unpacking iptables-1.3.5.tar.bz2 to /var/tmp/portage/iptables-1.3.5-r1/work
 * Applying install_ipv6_apps.patch ...                                                                            [ ok ]
 * Applying install_all_dev_files.patch-1.3.1 ...                                                                  [ ok ]
 * Applying grsecurity-1.2.8-iptables.patch-1.3.1 ...                                                              [ ok ]
 * Applying iptables-1.3.1-compilefix.patch ...                                                                    [ ok ]
>>> Source unpacked.
>>> Compiling source in /var/tmp/portage/iptables-1.3.5-r1/work/iptables-1.3.5 ...
-O2
Making dependencies: please wait...


^^ I've installed it successfully here, but I'll do a rebuild to see if I can reproduce the problem.

When you try installing iptables, what does top report? Any running threads? Anything obvious shown by ps axf?

For me, I'm getting:
Code:
 6689 pts/4    Ss     0:00  \_ -/bin/bash
 6691 pts/4    S+     0:25  |   \_ /usr/bin/python -O /usr/bin/emerge -a iptables
 6850 pts/4    S+     0:05  |       \_ /bin/bash /usr/lib/portage/bin/ebuild.sh compile
 6897 pts/4    S+     0:02  |           \_ make -j1 COPT_FLAGS=-O2 -mips4 -mabi=32 -fomit-frame-pointer PREFIX= LIBDIR=/l
ib BINDIR=/sbin MANDIR=/usr/share/man INCDIR=/usr/include KERNEL_DIR=/usr CC=mipsel-unknown-linux-gnu-gcc
 7731 pts/4    S+     0:00  |               \_ /bin/sh -c mipsel-unknown-linux-gnu-gcc -M -MG -O2 -mips4 -mabi=32 -fomit-
frame-pointer -Wall -Wunused -I/usr/include -Iinclude/ -DIPTABLES_VERSION=\"1.3.5\"  extensions/libipt_LOG.c |  sed -e 's
@^.*\.o:@extensions/libipt_LOG.d extensions/libipt_LOG_sh.o:@' > extensions/libipt_LOG.d
 7732 pts/4    R+     0:00  |                   \_ mipsel-unknown-linux-gnu-gcc -M -MG -O2 -mips4 -mabi=32 -fomit-frame-p
ointer -Wall -Wunused -I/usr/include -Iinclude/ -DIPTABLES_VERSION="1.3.5" extensions/libipt_LOG.c
 7733 pts/4    R+     0:00  |                   \_ /bin/sh -c mipsel-unknown-linux-gnu-gcc -M -MG -O2 -mips4 -mabi=32 -fo
mit-frame-pointer -Wall -Wunused -I/usr/include -Iinclude/ -DIPTABLES_VERSION=\"1.3.5\"  extensions/libipt_LOG.c |  sed -
e 's@^.*\.o:@extensions/libipt_LOG.d extensions/libipt_LOG_sh.o:@' > extensions/libipt_LOG.d


Update: Dispite also compiling two versions of gcc (in separate chroot environments) and otherwise being under a high load...

Code:
Extensions found: IPv4:dccp IPv4:recent IPv4:string IPv6:REJECT
mipsel-unknown-linux-gnu-gcc -O2 -mips4 -mabi=32 -fomit-frame-pointer -Wall -Wunused -I/usr/include -Iinclude/ -DIPTABLES_VERSION=\"1.3.5\"  -fPIC -o extensions/libipt_stealth_sh.o -c extensions/libipt_stealth.c
ld -shared  -o extensions/libipt_stealth.so extensions/libipt_stealth_sh.o
mipsel-unknown-linux-gnu-gcc -O2 -mips4 -mabi=32 -fomit-frame-pointer -Wall -Wunused -I/usr/include -Iinclude/ -DIPTABLES_VERSION=\"1.3.5\"  -fPIC -o extensions/libipt_ah_sh.o -c extensions/libipt_ah.c
ld -shared  -o extensions/libipt_ah.so extensions/libipt_ah_sh.o


...the build proceeds... and finishes...
Code:
>>> Source compiled.
>>> Test phase [not enabled]: net-firewall/iptables-1.3.5-r1

>>> Install iptables-1.3.5-r1 into /var/tmp/portage/iptables-1.3.5-r1/image/ category net-firewall


Code:
top - 13:30:33 up 48 days, 13:14,  7 users,  load average: 3.39, 3.43, 3.02
Tasks: 100 total,   6 running,  94 sleeping,   0 stopped,   0 zombie
Cpu(s): 58.6% us, 25.4% sy, 15.4% ni,  0.0% id,  0.0% wa,  0.0% hi,  0.6% si
Mem:    125296k total,   123144k used,     2152k free,    10244k buffers
Swap:  4006760k total,    58684k used,  3948076k free,    36656k cached

USER      NI S TTY      COMMAND
root       0 R pts/2    stage1/cc1 -quiet -I. -I. -I/var/tmp/portage/gcc-4.1.1/work/gcc-4.1.1/gcc -I/var/tmp/portage/gcc-
root       0 R pts/4    /usr/libexec/gcc/mipsel-unknown-linux-gnu/3.4.6/cc1 -E -quiet -I/usr/include -Iinclude/ -DIPTABLE
root      10 R pts/0    /tmp/portage/gcc-4.1.1/work/build/./gcc/cc1plus -quiet -nostdinc++ -I/tmp/portage/gcc-4.1.1/work/
root       0 R pts/3    top

root       0 D ?        [kswapd0]
root       0 R pts/6    sh -c chroot /home/n32 ccache -s ; chroot /home/uclibc ccache -s

^^ Note the load average, and the commands being run (characteristic of gcc builds).
_________________
Stuart Longland (a.k.a Redhatter, VK4MSL)
I haven't lost my mind - it's backed up on a tape somewhere...

Gentoo/MIPS Cobalt developer, Mozilla herd member.
Back to top
View user's profile Send private message
godish
n00b
n00b


Joined: 05 Oct 2004
Posts: 50
Location: Boston MA

PostPosted: Tue Oct 03, 2006 5:07 pm    Post subject: Reply with quote

I have been looking at processes and they need to progressing... So maybe I should take the Please Wait seriously.... lol

This is after letting it sit for about 1 day...
Code:
 
7019 ?        Ss     0:12 SCREEN -S emerge
7020 pts/4    Ss     0:00  \_ -
11168 pts/4    S+     0:23      \_ /usr/bin/python -O /usr/bin/emerge gshield
11322 pts/4    S+     0:05          \_ /bin/bash /usr/lib/portage/bin/ebuild.sh compile
11369 pts/4    S+    30:50              \_ make -j2 -j1 COPT_FLAGS=-O2 -mips4 -mabi=32 -pipe PREFIX= LIBDIR=/lib BINDIR=/sbin MANDIR=/usr/share/man INCDIR=/usr/include DO_IPV6=0 KERNEL_DIR=/usr CC=mipsel-unknown-linux-gnu-gcc
30171 pts/4    R+     0:00                  \_ /bin/sh -c mipsel-unknown-linux-gnu-gcc -M -MG -O2 -mips4 -mabi=32 -pipe -Wall -Wunused -I/usr/include -Iinclude/ -DIPTABLES_VERSION=\"1.3.5\"  extensions/libipt_stealth.c |  sed -e 's@^.*\.o:@extensions/libipt_stealth.d extensions/libipt_stealth_sh.o:@' > extensions/libipt_stealth.d

Now, in process 11369, it says the kernel directory is /usr, is that correct? (thought it was /usr/src/linux).

Now, i setup a cross compiler for the kernel, is there a way i can do it for the entire system?

Ps. I really like the x flag, never knew about it :)
_________________
Nobody makes me bleed my own blood... NOBODY!
Back to top
View user's profile Send private message
Redhatter
Retired Dev
Retired Dev


Joined: 20 Sep 2003
Posts: 548
Location: Brisbane, QLD, Australia

PostPosted: Wed Oct 04, 2006 1:33 am    Post subject: Reply with quote

godish wrote:
I have been looking at processes and they need to progressing... So maybe I should take the Please Wait seriously.... lol

This is after letting it sit for about 1 day...
Code:
 
7019 ?        Ss     0:12 SCREEN -S emerge
7020 pts/4    Ss     0:00  \_ -
11168 pts/4    S+     0:23      \_ /usr/bin/python -O /usr/bin/emerge gshield
11322 pts/4    S+     0:05          \_ /bin/bash /usr/lib/portage/bin/ebuild.sh compile
11369 pts/4    S+    30:50              \_ make -j2 -j1 COPT_FLAGS=-O2 -mips4 -mabi=32 -pipe PREFIX= LIBDIR=/lib BINDIR=/sbin MANDIR=/usr/share/man INCDIR=/usr/include DO_IPV6=0 KERNEL_DIR=/usr CC=mipsel-unknown-linux-gnu-gcc
30171 pts/4    R+     0:00                  \_ /bin/sh -c mipsel-unknown-linux-gnu-gcc -M -MG -O2 -mips4 -mabi=32 -pipe -Wall -Wunused -I/usr/include -Iinclude/ -DIPTABLES_VERSION=\"1.3.5\"  extensions/libipt_stealth.c |  sed -e 's@^.*\.o:@extensions/libipt_stealth.d extensions/libipt_stealth_sh.o:@' > extensions/libipt_stealth.d

Now, in process 11369, it says the kernel directory is /usr, is that correct? (thought it was /usr/src/linux).


The kernel source is. The kernel headers lurk in /usr/include/linux and /usr/include/asm. If one was cross-compiling, they would specify KERNEL_DIR to the base path of their kernel source tree, and the build script then adds the required include/linux or include/asm bit itself.

Quote:
Now, i setup a cross compiler for the kernel, is there a way i can do it for the entire system?


What, to cross compile the entire userland? You can using crossdev, in fact I use this on my x86 desktop to compile kernels, since it's a lot faster than a Qube2. That said, not all applications cross-compile easily... in fact, many are a right pain in the rear to cross-compile properly. (e.g. bash breaks in subtle ways when cross-compiled). Your mileage may vary.

Quote:
Ps. I really like the x flag, never knew about it :)


Heh... Unix clones have so many little hidden secrets. :-)
_________________
Stuart Longland (a.k.a Redhatter, VK4MSL)
I haven't lost my mind - it's backed up on a tape somewhere...

Gentoo/MIPS Cobalt developer, Mozilla herd member.
Back to top
View user's profile Send private message
iluxa
Retired Dev
Retired Dev


Joined: 18 Nov 2006
Posts: 52

PostPosted: Sun Nov 26, 2006 5:06 am    Post subject: Reply with quote

godish wrote:
I have been looking at processes and they need to progressing... So maybe I should take the Please Wait seriously.... lol

This is after letting it sit for about 1 day...
Code:
 
7019 ?        Ss     0:12 SCREEN -S emerge
7020 pts/4    Ss     0:00  \_ -
11168 pts/4    S+     0:23      \_ /usr/bin/python -O /usr/bin/emerge gshield
11322 pts/4    S+     0:05          \_ /bin/bash /usr/lib/portage/bin/ebuild.sh compile
11369 pts/4    S+    30:50              \_ make -j2 -j1 COPT_FLAGS=-O2 -mips4 -mabi=32 -pipe PREFIX= LIBDIR=/lib BINDIR=/sbin MANDIR=/usr/share/man INCDIR=/usr/include DO_IPV6=0 KERNEL_DIR=/usr CC=mipsel-unknown-linux-gnu-gcc
30171 pts/4    R+     0:00                  \_ /bin/sh -c mipsel-unknown-linux-gnu-gcc -M -MG -O2 -mips4 -mabi=32 -pipe -Wall -Wunused -I/usr/include -Iinclude/ -DIPTABLES_VERSION=\"1.3.5\"  extensions/libipt_stealth.c |  sed -e 's@^.*\.o:@extensions/libipt_stealth.d extensions/libipt_stealth_sh.o:@' > extensions/libipt_stealth.d

Now, in process 11369, it says the kernel directory is /usr, is that correct? (thought it was /usr/src/linux).

Now, i setup a cross compiler for the kernel, is there a way i can do it for the entire system?

Ps. I really like the x flag, never knew about it :)


One things I noticed is "-j2" seems to be in your MAKEOPTS. This makes absolutely no sense on Qube (although is irrelevant in this case)
_________________
Ilya A. Volynets-Evenbakh
Total Knowledge. CTO
http://www.total-knowledge.com

CPPSERV: C++ Servlet Container and CSP (C++ Server Pages) parser: Application server for Real Programmers(TM)
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Gentoo on Alternative Architectures All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum