LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - General
User Name
Password
Linux - General This Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.

Notices

Reply
 
Search this Thread
Old 10-25-2007, 06:14 AM   #1
joke_dst
LQ Newbie
 
Registered: Sep 2007
Posts: 3

Rep: Reputation: 0
Unhappy iptables error - kernel configuration wrong??


Hello.

I've recently upgraded my kernel from 2.6.14 to 2.6.19 and now iptables doesn't work anymore. I get this error message:

# iptables -A bad_tcp_packets -p tcp --tcp-flags SYN,ACK SYN,ACK -m state --state NEW -j DROP
iptables v1.3.6: Couldn't find match `state'

I've looked through the kernel configuration, and it seems I have to activate NETFILTER_XT_MATCH_STATE, which seems to replace IP_NF_TARGET_CLASSIFY (which no longer exists). However, when I do this, it still doesn't work.

In fact, nothing I activate under the new "Core Netfilter configuration" folder in the kernel configuration (like "netfilter netlink" and xtables support) seems to affect the iptables command.

Does anyone have any ideas? Am I even on the right track?
 
Old 10-26-2007, 03:18 PM   #2
Tinkster
Moderator
 
Registered: Apr 2002
Location: in a fallen world
Distribution: slackware by choice, others too :} ... android.
Posts: 22,986
Blog Entries: 11

Rep: Reputation: 880Reputation: 880Reputation: 880Reputation: 880Reputation: 880Reputation: 880Reputation: 880
Hi,

And welcome to LQ!

To help us in assessing the issue please tell us which distro
you're using, and how you went about that kernel update (e.g.
is it from the distros repository, did you compile a stock kernel
from source, if so, what were the steps taken... )



Cheers,
Tink
 
Old 10-30-2007, 03:24 AM   #3
joke_dst
LQ Newbie
 
Registered: Sep 2007
Posts: 3

Original Poster
Rep: Reputation: 0
Hi, and thanks!

I'm using a snapgear distro for integrated systems (www.snapgear.org). They release their own patched versions of the kernel, so I can't for example switch to the latest version without a lot of work...

Anyway, when doing a "make menuconfig" (or xconfig) the IP_NF_TARGET_CLASSIFY option no longer exists. Is this not the case in the mainline kernel?

Some of the option previously in the "IP: Netfilter configuration" part of the kernel configuration is now under "Core Netfilter configuration", but activating them does not affect the behavior of iptables.

Is there something I have to activate? I'm using the version of iptables that came with the distro (1.3.6), so I'd assume it'd be the right one for using the "Core Netfilter configuration"-parts instead, but it doesn't seem to work.


Thanks in advance for any help you can give me
Jocke
 
Old 10-30-2007, 03:42 AM   #4
Tinkster
Moderator
 
Registered: Apr 2002
Location: in a fallen world
Distribution: slackware by choice, others too :} ... android.
Posts: 22,986
Blog Entries: 11

Rep: Reputation: 880Reputation: 880Reputation: 880Reputation: 880Reputation: 880Reputation: 880Reputation: 880
Sorry, but with the cyberguard's modified kernel I think you
should be asking their support rather than the community; not
because I don't want to help but simply because I don't know
and don't have any access to it.

Maybe someone else has the same device/kernel and can offer
advice, I'll add tags to your post and suggest that you rename
it and add a reference to the device in the subject, too.



Cheers,
Tink
 
  


Reply

Tags
configuration, iptables, kernel


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Superblock Error, wrong boot kernel? elliotfuller Linux - General 7 12-01-2006 12:23 PM
CD burning impossible, (kernel) configuration wrong? Li... Debian 10 02-24-2006 05:29 PM
NVIDIA 7174 Driver - Wrong kernel sources error dezza Linux - Hardware 6 05-06-2005 01:34 PM
Error after kernel configuration ramya272 Linux - Newbie 1 02-05-2004 09:30 AM
The kernel configuration error. 9.1 akihandyman Mandriva 6 11-22-2003 06:07 PM


All times are GMT -5. The time now is 08:01 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration