LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Server (https://www.linuxquestions.org/questions/linux-server-73/)
-   -   Ubuntu minimal modules not installed/loading (https://www.linuxquestions.org/questions/linux-server-73/ubuntu-minimal-modules-not-installed-loading-4175429173/)

sl4ck 09-26-2012 02:55 PM
Ubuntu minimal modules not installed/loading
 
Hi there, I've a vps witch uses ubuntu minimal 2.6.32-042stab049.6.

When I try modprobe ipt_limit
output:
FATAL: Module ipt_limit not found.

I've searched for patchs/ipt_limit.o and I can't find a way to solve this.

I hope someone can help with some deb package or some other solution.

Thanks...

Didier Spaier 09-27-2012 05:45 PM
Hi and welcome to LQ.

It seems that ipt_limit.c be not longer shipped in recent kernels.

At least it is not in a vanilla 2.6.32 kernel as a search in LXR shows.

sl4ck 09-27-2012 06:01 PM
Thank you, I actually tried to install 12.04 in the openvz panel and it was still on the same kernel, it's really odd, I've to talk with the company in order to solve this, however maybe you know some similar rule of iptables that limits connection in X port to 1 per ip? Doesn't really has to be iptables, can be ipchains, it's just that I only am used to iptables.

Didier Spaier 09-27-2012 06:31 PM
Sorry, I know nothing about networking. I had a look into my kernel options and here is something you could try instead though:

Code:
"connlimit" match support" (NETFILTER_XT_MATCH_CONNLIMIT)

CONFIG_NETFILTER_XT_MATCH_CONNLIMIT:

This match allows you to match against the number of parallel
connections to a server per client IP address (or address block).

Symbol: NETFILTER_XT_MATCH_CONNLIMIT [=m]
Type : tristate
Prompt: "connlimit" match support"
Defined at net/netfilter/Kconfig:636
Depends on: NET [=y] && INET [=y] && NETFILTER [=y] && NETFILTER_XTABLES [=m] && NF_CONNTRACK [=m] && NETFILTER_ADVANCED [=y]
Location:
-> Networking support (NET [=y])
-> Networking options
-> Network packet filtering framework (Netfilter) (NETFILTER [=y])
-> Core Netfilter Configuration
-> Netfilter Xtables support (required for ip_tables) (NETFILTER_XTABLES [=m])
I have it here (vanilla kernel 2.6.37.6):
Code:
bash-4.1#modprobe -l|grep connlimit
kernel/net/netfilter/xt_connlimit.ko
I have found it searching Google for "ipt_limit supersede" but I let you check that it really supersedes it.

sl4ck 09-28-2012 01:09 PM
Yes, that's actually a good start to go with, but.. this kernel is really very customized, lsmod = 0, no modules at all, so I hope that con_limit doesn't depend on any other modules, also there's no netfilter folder, I will try to see if it's okay to create it manually.


All times are GMT -5. The time now is 04:00 PM.