LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 10-04-2006, 09:59 AM   #1
gabsik
Member
 
Registered: Dec 2005
Location: This planet
Distribution: Debian,Xubuntu
Posts: 567

Rep: Reputation: 30
Patch o matic ????


I have a debian sarge kernel 2.6 . i got the patch-o-matic-ng , the iptables and kernel sources .I have compiled the kernel i got the kernel-image-2.6.8_custom.1.0_i386.deb that i installed with dpkg -i,rebboted the machine,no kernel panic and new kernel with the POM as modules first and than built in but where are they ?
Code:
root@argo:~# lsmod | grep ipt
ipt_recent             10252  2
ipt_REDIRECT            2432  2
ipt_multiport           2304  4
ipt_limit               2688  18
ipt_owner               3712  2
ipt_tos                 1920  12
ipt_MARK                2432  29
ipt_ULOG                7592  95
ipt_state               2304  12
ipt_MASQUERADE          3968  1
ipt_LOG                 6272  0
iptable_mangle          3072  1
iptable_filter          3072  1
iptable_nat            22692  5 ipt_REDIRECT,ip_nat_irc,ip_nat_ftp,ipt_MASQUERADE
ip_conntrack           32908  8 ipt_REDIRECT,ip_nat_irc,ip_conntrack_irc,ip_nat_ftp,ip_conntrack_ftp,ipt_state,ipt_MASQUERADE,iptable_nat
ip_tables              16896  14 ipt_recent,ipt_REDIRECT,ipt_multiport,ipt_limit,ipt_owner,ipt_tos,ipt_MARK,ipt_ULOG,ipt_state,ipt_MASQUERADE,ipt_LOG,iptable_mangle,iptable_filter,iptable_nat
Going to have a look in the netfilter kernel modules dir i can see some of them but not all(i don't see TARPIT or PSD)
Code:
root@argo:~# ls /lib/modules/2.6.8-2-386/kernel/net/ipv4/netfilter/
arptable_filter.ko      ipfwadm.ko            iptable_nat.ko    ipt_ecn.ko      ipt_mark.ko        ipt_realm.ko     ipt_TOS.ko
arp_tables.ko           ip_nat_amanda.ko      iptable_raw.ko    ipt_ECN.ko      ipt_MARK.ko        ipt_recent.ko    ipt_ttl.ko
arpt_mangle.ko          ip_nat_ftp.ko         ip_tables.ko      ipt_esp.ko      ipt_MASQUERADE.ko  ipt_REDIRECT.ko  ipt_ULOG.ko
ipchains.ko             ip_nat_irc.ko         ipt_addrtype.ko   ipt_helper.ko   ipt_multiport.ko   ipt_REJECT.ko
ip_conntrack_amanda.ko  ip_nat_snmp_basic.ko  ipt_ah.ko         ipt_iprange.ko  ipt_NETMAP.ko      ipt_SAME.ko
ip_conntrack_ftp.ko     ip_nat_tftp.ko        ipt_CLASSIFY.ko   ipt_length.ko   ipt_NOTRACK.ko     ipt_state.ko
ip_conntrack_irc.ko     ip_queue.ko           ipt_conntrack.ko  ipt_limit.ko    ipt_owner.ko       ipt_tcpmss.ko
ip_conntrack.ko         iptable_filter.ko     ipt_dscp.ko       ipt_LOG.ko      ipt_physdev.ko     ipt_TCPMSS.ko
ip_conntrack_tftp.ko    iptable_mangle.ko     ipt_DSCP.ko       ipt_mac.ko      ipt_pkttype.ko     ipt_tos.ko
I don't understand why modules i have built in the make menuconfig are not here and others are ....
es. :
Code:
root@argo:~# modprobe ipt_NOTRACK
root@argo:~#
Ok! But ...
Code:
root@argo:~# modprobe ipt_TARPIT
FATAL: Module ipt_TARPIT not found.
I hope you see my problem thanks !!!!
 
Old 10-06-2006, 12:25 PM   #2
peter_robb
Senior Member
 
Registered: Feb 2002
Location: Szczecin, Poland
Distribution: Gentoo, Debian
Posts: 2,458

Rep: Reputation: 48
They will exist if you selected them in make menuconfig after patching the kernel.
When you enter an iptables rule, it loads the kernel module to match. So if it's not loaded, then it's not needed.. or, you aren't using the custom iptables executable you patched.
Check your PATH variable, echo $PATH.
Then find your old iptables executables, which -a iptables.
make and install your custom iptables with a different sbin location, usually /usr/local/sbin if you don't specify anything at all.
Read the INSTALL file in the iptables sources directory for details.
Do the make && make install in the iptables sources, and then modify your /etc/init.d/iptables file if you use one, to select the correct iptables executables.

Last edited by peter_robb; 10-06-2006 at 12:26 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
patch-o-matic issue st3reo Linux - Software 0 07-08-2006 11:36 AM
patch-o-matic problem c0lin Linux - Security 3 06-16-2005 05:03 AM
Patch-o-matic TTL Patch Knopper Fedora 1 02-02-2005 10:27 AM
Patch-o-Matic TTL Patch Knopper Linux - Networking 1 02-02-2005 09:27 AM
How to Install patch-o-matic(a iptables patch) on redhat 9? itebooks Linux - Security 1 07-23-2004 08:51 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 04:50 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration