LinuxQuestions.org
View the Most Wanted LQ Wiki articles.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Ubuntu
User Name
Password
Ubuntu This forum is for the discussion of Ubuntu Linux.

Notices

Reply
 
Search this Thread
Old 03-12-2006, 02:06 PM   #1
Penguin of Wonder
Senior Member
 
Registered: Sep 2005
Location: West Virginia
Distribution: Gentoo
Posts: 1,249

Rep: Reputation: 45
Custom Kernel Problems


I'm using Breezy (on an AMD64), which is a good distro so far. I've been using it for about 6 months now. Seeing as i'm new to linux (even after almost a year of using it) I like to tinker with it. So I decieded to custom compile my kernel. I compiled 2.6.15 from kernel.org. Now I'm getting these erros when I use the kernel. Other than these three though everything else, so far is running smoothly.

1.) On boot up after the kernel starts it says it can't access the hardware clock. I know there's nothing wrong with the hardware because the kernel Ubuntu installed could find it.

2.) Firestarter says my kernel dosen't have iptables. Could anyone tell me what option it was that I've turned off in menuconfig that turned off iptables. Though i'm not exactly sure what it is, I know better than to turn it off, so this one really bugs me.

3.) I've downloaded and I'm trying to install the nvidia drivers for my GeForce 6200 card but they won't install. I boot up to the prompt instead of X, and then run the package as directed but it says it needs something for my kernel. It proceeds to tell me it can download one from Nvidia, but that always hangs.

I know number 3 was a terriable description. I'm going to try it again, and see excatly what it says. Thanks for any help though guys!
 
Old 03-12-2006, 04:36 PM   #2
gilead
Senior Member
 
Registered: Dec 2005
Location: Brisbane, Australia
Distribution: Slackware64 14.0
Posts: 4,123

Rep: Reputation: 151Reputation: 151
For the first one, if the problem is that something is trying to access the real time clock but you don't have support for it compiled, can you check whether you have have CONFIG_RTC=y in your .config file?

For the second one, the Network Packet Filtering section is where iptables support is compiled in. If you have CONFIG_NETFILTER=y set, check the entries under it as well. If you have stuff compiled in as modules, you may need to modprobe them before using them.

For the third one, it's safe to tell the NVidia installer not to check its FTP site.
 
Old 03-12-2006, 04:43 PM   #3
ilikejam
Senior Member
 
Registered: Aug 2003
Location: Glasgow
Distribution: Fedora / Solaris
Posts: 3,109

Rep: Reputation: 96
Hi.

1) Look in 'Processor type and features'. Switch (on or off, whichever it's not at the moment) HPET timer support.
Edit: actually, I think gilead is right, you'll need to switch on Device Drivers -> Character devices -> Enhanced Real Time Clock Support

2) iptables is the firewall kernel module. It's in Networking -> Networking options. Switch on Network packet filtering, then you'll have to work out which modules firestarter needs (You'll definitely need IP: Netfilter configuration -> IP tables support for firestarter to work at all)

3) The nVidia installer probably can't find you kernel sources. Run the nVidia installer with --kernel-source-path=/path/to/your/kernel/source/directory
When it the installer asks you if you want to download from nvidia, say no, and it should proceed to compile.

Dave

Edit: Gah, beaten to it.

Last edited by ilikejam; 03-12-2006 at 04:46 PM.
 
Old 03-13-2006, 07:22 AM   #4
Penguin of Wonder
Senior Member
 
Registered: Sep 2005
Location: West Virginia
Distribution: Gentoo
Posts: 1,249

Original Poster
Rep: Reputation: 45
For problem number one, I didn't see the option that gilead gave, so here is the Character Device section from .config file:
Code:
#
# Character devices
#
CONFIG_VT=y
CONFIG_VT_CONSOLE=y
CONFIG_HW_CONSOLE=y
CONFIG_SERIAL_NONSTANDARD=y
CONFIG_ROCKETPORT=m
CONFIG_CYCLADES=m
# CONFIG_CYZ_INTR is not set
# CONFIG_DIGIEPCA is not set
CONFIG_MOXA_SMARTIO=m
# CONFIG_ISI is not set
CONFIG_SYNCLINK=m
CONFIG_SYNCLINKMP=m
CONFIG_N_HDLC=m
# CONFIG_SPECIALIX is not set
CONFIG_SX=m
CONFIG_STALDRV=y

For problem number 2, in my kernel's config it have:
Code:
# CONFIG_NETFILTER is not set
is that why my "iptables" isn't set?

Last edited by Penguin of Wonder; 03-13-2006 at 07:26 AM.
 
Old 03-13-2006, 12:13 PM   #5
Penguin of Wonder
Senior Member
 
Registered: Sep 2005
Location: West Virginia
Distribution: Gentoo
Posts: 1,249

Original Poster
Rep: Reputation: 45
In responce to my third problem, here is the output from the Nvidia install log:

Code:
Using: nvidia-installer ncurses user interface
-> License accepted.
-> No precompiled kernel interface was found to match your kernel; would you li
   ke the installer to attempt to download a kernel interface for your kernel f
   rom the NVIDIA ftp site (ftp://download.nvidia.com)? (Answer: No)
-> No precompiled kernel interface was found to match your kernel; this means
   that the installer will need to compile a new kernel interface.
-> Performing CC test with CC="cc".
ERROR: Unable to find the kernel source tree for the currently running kernel. 
       Please make sure you have installed the kernel source files for your
       kernel and that they are properly configured; on Red Hat Linux systems,
       for example, be sure you have the 'kernel-source' RPM installed.  If you
       know the correct kernel source files are installed, you may specify the
       kernel source path with the '--kernel-source-path' command line option.
ERROR: Installation has failed.  Please see the file
       '/var/log/nvidia-installer.log' for details.  You may find suggestions
       on fixing installation problems in the README available on the Linux
       driver download page at www.nvidia.com.
That should shed alot more light on my problem!
 
Old 03-13-2006, 01:29 PM   #6
gilead
Senior Member
 
Registered: Dec 2005
Location: Brisbane, Australia
Distribution: Slackware64 14.0
Posts: 4,123

Rep: Reputation: 151Reputation: 151
The CONFIG_RTC is set under Character Devices, but in the .config file it is shown further down in Watchdog cards. Can you grep for CONFIG_RTC please and see if it is set?

The 'CONFIG_NETFILTER is not set' line is stopping iptables from working. After you've set this, you'll need to select from the other options that become available for it.

The error about the NVidia installer not finding your kernel sources is odd. Did you install the kernel source package from Ubuntu for your current kernel? It looks as though the sources you have installed aren't the ones for the kernel that is running.
 
Old 03-13-2006, 01:43 PM   #7
Penguin of Wonder
Senior Member
 
Registered: Sep 2005
Location: West Virginia
Distribution: Gentoo
Posts: 1,249

Original Poster
Rep: Reputation: 45
Quote:
Originally Posted by gilead
The error about the NVidia installer not finding your kernel sources is odd. Did you install the kernel source package from Ubuntu for your current kernel? It looks as though the sources you have installed aren't the ones for the kernel that is running.
The sources I used for my new Kernel are not from the Ubuntu repositories. I got them from www.kernel.org. After I finished installing hte kernel I tried to put the sources in /boot but they wouldn't fit. So I just deleted them and went on. The sources for my old kernel though are still there, which would explain why "it looks as though the sources you have installed aren't the ones for the kernel that is running."

I don't know what grep is, much less how to use it, so I will get back to you on that part. Thanks for the help so far.
 
Old 03-13-2006, 01:52 PM   #8
gilead
Senior Member
 
Registered: Dec 2005
Location: Brisbane, Australia
Distribution: Slackware64 14.0
Posts: 4,123

Rep: Reputation: 151Reputation: 151
OK, since you'll have to get the sources again to build a kernel with the first 2 options anyway, it's no big deal.

If you extracted them to /usr/src and they were in, for example, /usr/src/linux-2.6.15.6 you'd be modifying /usr/src/linux-2.6.15.6/.config with the make menuconfig (or xconfig, etc.) command. The grep command would be grep 'CONFIG_RTC' /usr/src/linux-2.6.15.6/.config

The steps (oversimplified) are:

- Extract the new kernel sources and run make mrproper in the source directory;
- Copy your old kernel's .config file to the new source directory;
- Run make oldconfig to get all of your old settings. If you're prompted for new settings values, enter them here;
- Run make menuconfig (or xconfig, etc.) to set CONFIG_RTC and CONFIG_NETFILTER, etc.;
- Build and install your new kernel;
- Reboot the PC and install the NVidida driver.

There are gaps in that, but if you've done this before you probably know them already...
 
Old 03-14-2006, 04:35 PM   #9
Penguin of Wonder
Senior Member
 
Registered: Sep 2005
Location: West Virginia
Distribution: Gentoo
Posts: 1,249

Original Poster
Rep: Reputation: 45
Alright I've downloaded, patched, compiled, and installed 2.6.15.6. I used the make old config and then updated using make xconfig so that iptables would be included, and so that my hardware clock could be accessed. The good news is I no longer have hardware clock error messages on boot. So i'm assuming problem solved.

Now for the bad news. My internet no longer works. I'm assuming since I didn't change anything except for the iptables part that iptables is my problem. Are there any idea what could be the problem, have I included to many parts under the NET FILTER section? If you need me to post parts of any files please ask. Thanks for the help!

(p.s. I have not tried to install my nvidia drivers yet, so I will come back and report on how that went.)
 
Old 03-14-2006, 04:46 PM   #10
gilead
Senior Member
 
Registered: Dec 2005
Location: Brisbane, Australia
Distribution: Slackware64 14.0
Posts: 4,123

Rep: Reputation: 151Reputation: 151
Can you run iptables -L -v and post the output? It may be that your firewall is starting up, but is too restrictive. Can you also post your general network setup? Does your Linux box connect directly to the internet, is there a router or another firewall, etc...

There are other possibilities. For example, your firewall startup script may try to load part of the iptables stuff as a module and exit if it does not find it. If something is compiled into the kernel, there won't be a module to load.
 
Old 03-14-2006, 08:49 PM   #11
Penguin of Wonder
Senior Member
 
Registered: Sep 2005
Location: West Virginia
Distribution: Gentoo
Posts: 1,249

Original Poster
Rep: Reputation: 45
Here is the output from iptables -L -v

Code:
Chain INBOUND (1 references)
 pkts bytes target     prot opt in     out     source               destination
  413 45557 LSI        all  --  any    any     anywhere             anywhere

Chain INPUT (policy DROP 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination
    0     0 ACCEPT     tcp  --  any    any     mudns2.marshall.edu  anywhere            tcp flags:!SYN,RST,ACK/SYN
  147 28364 ACCEPT     udp  --  any    any     mudns2.marshall.edu  anywhere
    0     0 ACCEPT     tcp  --  any    any     mudns1.marshall.edu  anywhere            tcp flags:!SYN,RST,ACK/SYN
    0     0 ACCEPT     udp  --  any    any     mudns1.marshall.edu  anywhere
65650 5455K ACCEPT     all  --  lo     any     anywhere             anywhere
    1   356 ACCEPT     icmp --  any    any     anywhere             anywhere            limit: avg 10/sec burst 5
  808  141K DROP       all  --  eth0   any     anywhere             255.255.255.255
 7519 1191K DROP       all  --  any    any     anywhere             10.101.223.255
    0     0 DROP       all  --  any    any     BASE-ADDRESS.MCAST.NET/8  anywhere
    0     0 DROP       all  --  any    any     anywhere             BASE-ADDRESS.MCAST.NET/8
    0     0 DROP       all  --  any    any     255.255.255.255      anywhere
    0     0 DROP       all  --  any    any     anywhere             0.0.0.0
    0     0 LSI        all  -f  any    any     anywhere             anywhere            limit: avg 10/min burst 5
  413 45557 INBOUND    all  --  eth0   any     anywhere             anywhere
    0     0 LOG_FILTER  all  --  any    any     anywhere             anywhere
    0     0 LOG        all  --  any    any     anywhere             anywhere            LOG level info prefix `Unknown Input'

Chain FORWARD (policy DROP 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination
    0     0 ACCEPT     icmp --  any    any     anywhere             anywhere            limit: avg 10/sec burst 5
    0     0 LOG_FILTER  all  --  any    any     anywhere             anywhere
    0     0 LOG        all  --  any    any     anywhere             anywhere            LOG level info prefix `Unknown Forward'

Chain LOG_FILTER (5 references)
 pkts bytes target     prot opt in     out     source               destination

Chain LSI (2 references)
 pkts bytes target     prot opt in     out     source               destination
  413 45557 LOG_FILTER  all  --  any    any     anywhere             anywhere
    0     0 LOG        tcp  --  any    any     anywhere             anywhere            tcp flags:SYN,RST,ACK/SYN limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
    0     0 DROP       tcp  --  any    any     anywhere             anywhere            tcp flags:SYN,RST,ACK/SYN
    0     0 LOG        tcp  --  any    any     anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/RST limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
    0     0 DROP       tcp  --  any    any     anywhere             anywhere            tcp flags:FIN,SYN,RST,ACK/RST
    0     0 LOG        icmp --  any    any     anywhere             anywhere            icmp echo-request limit: avg 1/sec burst 5 LOG level info prefix `Inbound '
    0     0 DROP       icmp --  any    any     anywhere             anywhere            icmp echo-request
  413 45557 LOG        all  --  any    any     anywhere             anywhere            limit: avg 5/sec burst 5 LOG level info prefix `Inbound '
  413 45557 DROP       all  --  any    any     anywhere             anywhere

Chain LSO (0 references)
 pkts bytes target     prot opt in     out     source               destination
    0     0 LOG_FILTER  all  --  any    any     anywhere             anywhere
    0     0 LOG        all  --  any    any     anywhere             anywhere            limit: avg 5/sec burst 5 LOG level info prefix `Outbound '
    0     0 REJECT     all  --  any    any     anywhere             anywhere            reject-with icmp-port-unreachable

Chain OUTBOUND (1 references)
 pkts bytes target     prot opt in     out     source               destination
    0     0 ACCEPT     icmp --  any    any     anywhere             anywhere
  311 13968 ACCEPT     all  --  any    any     anywhere             anywhere

Chain OUTPUT (policy DROP 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination
    0     0 ACCEPT     tcp  --  any    any     oliver15-2.netreg.marshall.edu  mudns2.marshall.edu tcp dpt:domain
  147 10006 ACCEPT     udp  --  any    any     oliver15-2.netreg.marshall.edu  mudns2.marshall.edu udp dpt:domain
    0     0 ACCEPT     tcp  --  any    any     oliver15-2.netreg.marshall.edu  mudns1.marshall.edu tcp dpt:domain
    0     0 ACCEPT     udp  --  any    any     oliver15-2.netreg.marshall.edu  mudns1.marshall.edu udp dpt:domain
65650 5455K ACCEPT     all  --  any    lo      anywhere             anywhere
    0     0 DROP       all  --  any    any     BASE-ADDRESS.MCAST.NET/8  anywhere
    0     0 DROP       all  --  any    any     anywhere             BASE-ADDRESS.MCAST.NET/8
    0     0 DROP       all  --  any    any     255.255.255.255      anywhere
    0     0 DROP       all  --  any    any     anywhere             0.0.0.0
  311 13968 OUTBOUND   all  --  any    eth0    anywhere             anywhere
    0     0 LOG_FILTER  all  --  any    any     anywhere             anywhere
    0     0 LOG        all  --  any    any     anywhere             anywhere            LOG level info prefix `Unknown Output'
My general network setup? Well while I'm here at school she connects through the schools network to internet. This has never been a problem before though. When I'm at home it connects through the router and then the internet. I have a firewall downloaded, firestarter, but its not running. It will actually turn on now (when I do try to run it) but it constantly kicks out error messages about not being able to find certain directories. For now though I just want the internet back so i'll have a reason to use Firestarter.
 
Old 03-14-2006, 09:54 PM   #12
Penguin of Wonder
Senior Member
 
Registered: Sep 2005
Location: West Virginia
Distribution: Gentoo
Posts: 1,249

Original Poster
Rep: Reputation: 45
Ok. I admit defeat. It was firestarter that was stopping my internet from working.
Now I just have to figure out how to use this firewall to protect my comptuer.
You wouldn't have any firewall recomendations would you, which one to use, etc.?
 
Old 03-14-2006, 10:06 PM   #13
gilead
Senior Member
 
Registered: Dec 2005
Location: Brisbane, Australia
Distribution: Slackware64 14.0
Posts: 4,123

Rep: Reputation: 151Reputation: 151
If you have problems disabling the firewall, in the short term you can do the following to disable iptables filtering. Warning: be sure you have nothing listening on the internet network interface that shouldn't be:
Code:
iptables -t filter -P INPUT ACCEPT
iptables -t filter -P FORWARD ACCEPT
iptables -t filter -P OUTPUT ACCEPT
iptables -t nat -P PREROUTING ACCEPT
iptables -t nat -P POSTROUTING ACCEPT
iptables -t nat -P OUTPUT ACCEPT
The following will remove the custom chains (LSI, LSO, etc.):
Code:
iptables -X
iptables -t nat -X
Arno's iptables scripts at http://rocky.eld.leidenuniv.nl/ seem pretty good. I've used the tutorial at http://iptables-tutorial.frozentux.n...-tutorial.html and found it useful as well. Be prepared for a fair bit of reading though.

PS It looks as though the LSI rule is dropping all input packets. I haven't read it through properly (I prefer to try and set it up to test it but can't at the moment), but the last line of LSI is:
Code:
DROP       all  --  any    any     anywhere             anywhere

Last edited by gilead; 03-14-2006 at 10:09 PM.
 
Old 03-14-2006, 10:20 PM   #14
Penguin of Wonder
Senior Member
 
Registered: Sep 2005
Location: West Virginia
Distribution: Gentoo
Posts: 1,249

Original Poster
Rep: Reputation: 45
As another update to my third problem out of three listed in my orginal post. My nVidia drivers installed without a hitch this time. I didn't have to run any special commands or anything. This is really odd because all I did was recompile my kernel with some new options that I didn't think would affect the nvidia driver install. I didn't do anything different compile and install wise as far as my kernel was concerned. Maybe it was an error in the drivers install script? or possiably due to my mis-configured kernel. Thanks for the all the help!!

I'm going to bookmark the page you gave me and check it out, thanks for the help! All of my problems (the major ones anyway) are solved now.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
problems installing custom 2.6.14 kernel (for SATA problems) Ekkume Ubuntu 0 12-29-2005 02:39 PM
Kernel-Patch Debian Logo 2.6.2 not correctly working for custom kernel 2.6.11 smp deepclutch Debian 3 06-27-2005 03:59 AM
Custom Kernel 2.4.27 install problems (sarge) KaraK Debian 2 01-07-2005 10:47 AM
New FAQ topic: Should I edit my kernel configuration?/Should I build a custom kernel? chort *BSD 10 09-10-2004 11:15 PM
Slackware 10, custom 2.6.7 kernel, lilo, loads kernel very slowly entropyv Slackware 3 08-19-2004 06:06 PM


All times are GMT -5. The time now is 11:54 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration