LinuxQuestions.org
Help answer threads with 0 replies.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Red Hat
Reload this Page No Connection Tracking with 2.6.18-238.5.1.el5.centos.plus
User Name
Password
Red Hat This forum is for the discussion of Red Hat Linux.

Notices


Reply
  Search this Thread
Old 04-20-2011, 04:18 AM   #1
dman777
Member
 
Registered: Dec 2010
Distribution: Gentoo
Posts: 232

Rep: Reputation: 8
No Connection Tracking with 2.6.18-238.5.1.el5.centos.plus

I do not believe the firewall connection tracking is enabled. I have Centos 5.6 with 2.6.18-238.5.1.el5.centos.plus kernel. I went into the kernel .config and I see CONFIG_IP_NF_CONNTRACK=m. But when I do a lsmod I do not see this module. Why is this?
 
Old 04-23-2011, 11:38 PM   #2
andrewthomas
Senior Member
 
Registered: May 2010
Location: Chicago Metro
Distribution: Arch, Gentoo, Slackware
Posts: 1,690

Rep: Reputation: 312Reputation: 312Reputation: 312Reputation: 312
What happens when you?

Code:
modprobe ip_conntrack
/etc/sysconfig/iptables-config should have :

IPTABLES_MODULES="ip_conntrack ip_conntrack_ftp"
Last edited by andrewthomas; 04-23-2011 at 11:41 PM. Reason: added iptables-config info
 
Old 04-24-2011, 09:15 PM   #3
dman777
Member
 
Registered: Dec 2010
Distribution: Gentoo
Posts: 232

Original Poster
Rep: Reputation: 8
Thanks....that was it. Question though...
"# Load additional iptables modules (nat helpers)
# Default: -none-
# Space separated list of nat helpers (e.g. 'ip_nat_ftp ip_nat_irc'), which
# are loaded after the firewall rules are applied. Options for the helpers are
# stored in /etc/modprobe.conf.
"

Strange how the module is loaded after the firewall rules(assumeing IPTABLES and Chains) are applied. I guess it doesn't matter since this is loaded dureing boot up before a connection with an ISP is made, but wouldn't it be logical to have the module loaded before the rules are loaded?
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
hebrew fonts with centos 5 no GUI interface kernel 2.6.18-92.1.22.el5 Elnegro8 Linux - Distributions 1 01-13-2009 10:31 AM
Problem compiling ivtv-0.10.6 against 2.6.18-92.1.18.el5.centos.plus treimers Linux - Software 2 12-06-2008 12:44 PM
CentOS 5.2 Linux Kernel 2.6.18-92.1.10.el5 - Cannot Load e1000e driver jreige Linux - Hardware 1 09-18-2008 12:57 PM
Help with connection tracking vishamr2000 Linux - Security 1 05-27-2005 09:37 AM
Help with connection tracking!! vishamr2000 Linux - Security 1 05-27-2005 04:47 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Red Hat

All times are GMT -5. The time now is 01:24 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration