| View previous topic :: View next topic |
| Author |
Message |
Bangz
Tux's lil' helper
Joined: 23 Jan 2003
Posts: 148
Location: Brisbane/Austrralia
|
 Posted: Sun Apr 06, 2003 5:17 am Post subject: Help with installing iptables |
 |
|
I'm transferring my Gentoo server into my LAN Gateway (ADSL Sharing) box.
I have it connected to ADSL fine.
I have emerged iptables.
I then emerged gShield and have configured it.
That is pretty much all I've done. When I try to run gShield however, it says:
| Code: | Mariah firewall # ./gShield.rc
[gShield] initializing v2.8
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
[gShield] default TCP response set to DROP
[gShield] default UDP response set to DROP
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
[gShield] default logging rate limit set to 20/m
iptables: No chain/target/match by that name
[gShield] not logging ICMP
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
[gShield] no reserved drop logging
[gShield] dropping multicasts
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
[gShield] Enabling IRC connection tracking for 6666,6667
modprobe: Can't locate module ip_conntrack_irc
[gShield] Error: Could not load irc tracking module
modprobe: Can't locate module ip_nat_irc
[gShield] Error: Could not load irc NAT module
[gShield] 192.168.1.0/24 authorized for NAT
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
[gShield] Custom forwards DISabled
[gShield] Allowing all ICMP at rate of 60/m
[gShield] Allowing all traceroutes
[gShield] Enabling administrative access for host 192.168.1.2 with mac address 00:A0:C9:A6:25:38
[gShield] ftpd publically accessible
[gShield] httpd publically accessible
[gShield] SSH daemon publically accessible
[gShield] identd publically accessible
[gShield] Allowing highport access from everyone...
iptables: No chain/target/match by that name
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: Can't locate module ip_tables
iptables v1.2.7a: can't initialize iptables table `mangle': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
Mariah firewall # |
This leaves me to believe that, even though iptables has been emerged, I still need to manually insmod some modules?
Can anyone point me in the right direction please? Thanks. |
|
| Back to top |
|
 |
Bangz
Tux's lil' helper
Joined: 23 Jan 2003
Posts: 148
Location: Brisbane/Austrralia
|
| Posted: Sun Apr 06, 2003 5:29 am Post subject: |
|
|
OK, Im looking thru menuconfig, Im recompiling my kernel now giving almost everything support as a Module in Networking/Netfilter...
Ill reply with how it goes. |
|
| Back to top |
|
|
Bangz
Tux's lil' helper
Joined: 23 Jan 2003
Posts: 148
Location: Brisbane/Austrralia
|
| Posted: Sun Apr 06, 2003 6:56 am Post subject: |
|
|
OK, Ive recompiled my kernel. Given basically completely Module support in Netfilter.
However, it is still giving the same error. Is this a problem with gShield or what? I think I have configured it correctly.
| Code: | Mariah firewall # lsmod
Module Size Used by Not tainted
ipt_mac 600 1 (autoclean)
ipt_MASQUERADE 1272 1 (autoclean)
ip_nat_irc 2320 0 (unused)
ip_conntrack_irc 2864 2 [ip_nat_irc]
ipt_state 536 3 (autoclean)
ipt_limit 888 1 (autoclean)
iptable_nat 14936 3 (autoclean) [ipt_MASQUERADE ip_nat_irc]
ip_conntrack 19040 4 (autoclean) [ipt_MASQUERADE ip_nat_irc ip_conntrack_irc ipt_state iptable_nat]
iptable_filter 1612 1 (autoclean)
ip_tables 11032 8 [ipt_mac ipt_MASQUERADE ipt_state ipt_limit iptable_nat iptable_filter]
|
Can anyone help me please? |
|
| Back to top |
|
|
Bangz
Tux's lil' helper
Joined: 23 Jan 2003
Posts: 148
Location: Brisbane/Austrralia
|
| Posted: Sun Apr 06, 2003 7:23 am Post subject: |
|
|
Heres the new errors Im getting:
| Code: | Mariah firewall # ./gShield.rc
[gShield] initializing v2.8
[gShield] default TCP response set to DROP
[gShield] default UDP response set to DROP
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
[gShield] default logging rate limit set to 20/m
iptables: No chain/target/match by that name
[gShield] not logging ICMP
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
[gShield] no reserved drop logging
[gShield] dropping multicasts
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
[gShield] Enabling IRC connection tracking for 6666,6667
[gShield] 192.168.1.0/24 authorized for NAT
[gShield] Custom forwards DISabled
[gShield] Allowing all ICMP at rate of 60/m
[gShield] Allowing all traceroutes
[gShield] Enabling administrative access for host 192.168.1.2 with mac address 00:A0:C9:A6:25:38
[gShield] ftpd publically accessible
[gShield] httpd publically accessible
[gShield] SSH daemon publically accessible
[gShield] identd publically accessible
[gShield] Allowing highport access from everyone...
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
Mariah firewall # lsmod
Module Size Used by Not tainted
iptable_mangle 2008 0 (autoclean) (unused)
ipt_mac 600 1 (autoclean)
ipt_MASQUERADE 1272 1 (autoclean)
ip_nat_irc 2320 0 (unused)
ip_conntrack_irc 2864 2 [ip_nat_irc]
ipt_state 536 3 (autoclean)
ipt_limit 888 1 (autoclean)
iptable_nat 14936 3 (autoclean) [ipt_MASQUERADE ip_nat_irc]
ip_conntrack 19040 4 (autoclean) [ipt_MASQUERADE ip_nat_irc ip_conntrack_irc ipt_state iptable_nat]
iptable_filter 1612 1 (autoclean)
ip_tables 11032 9 [iptable_mangle ipt_mac ipt_MASQUERADE ipt_state ipt_limit iptable_nat iptable_filter]
Mariah firewall #
|
|
|
| Back to top |
|
|
|
Networking & Security
