LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices


Reply
  Search this Thread
Old 04-11-2006, 09:59 AM   #1
krizzz
Member
 
Registered: Oct 2004
Location: NY
Distribution: Slackware
Posts: 200

Rep: Reputation: 30
Netfilter and 2.6.16.2


Hi,
I recently upgraded my home router/server to 2.6.16.2 and everything went well except that netfilter modules that I comiled into the kernel don't seem to work. I'm only trying to run NAT based Masquerade with iptables. Iptables fail saying that I don't have the ip_module loaded, but I can see ip_tables and ip_conntrack loaded from dmesg. Am I missing some other stuff or something? I've never had this problem before. Maybe I forgot about something?

Last edited by krizzz; 04-11-2006 at 10:01 AM.
 
Old 04-11-2006, 11:08 AM   #2
mdarby
Member
 
Registered: Nov 2004
Location: Columbus, Ohio
Distribution: Slackware-Current / Debian
Posts: 795

Rep: Reputation: 30
I've never had luck compiling netfilter options into the kernel. Using them as modules always works for me.
 
Old 04-11-2006, 11:46 AM   #3
Alien_Hominid
Senior Member
 
Registered: Oct 2005
Location: Lithuania
Distribution: Hybrid
Posts: 2,247

Rep: Reputation: 53
Yes, you don't have ip_module module loaded as module what iptables want. Don't know why they don't like that ip_module is compiled into the kernel so try to compile this as module.

Last edited by Alien_Hominid; 04-11-2006 at 11:48 AM.
 
Old 04-11-2006, 12:49 PM   #4
krizzz
Member
 
Registered: Oct 2004
Location: NY
Distribution: Slackware
Posts: 200

Original Poster
Rep: Reputation: 30
OK, I'll it try it later when I'm back home and let you guys know. That's probably it as it was the first time I tried to compile it into a kernel instead of making a module.
Thanks!

Last edited by krizzz; 04-11-2006 at 12:50 PM.
 
Old 04-12-2006, 07:20 PM   #5
Linux.tar.gz
Senior Member
 
Registered: Dec 2003
Location: Paris
Distribution: Slackware forever.
Posts: 2,534

Rep: Reputation: 100Reputation: 100
Iptables is more suitable into the kernel, simply because it's faster and i'm sure you prefer fastest networking.
The new 2.6.16 has a new iptables configuration, so copying an older kernel's .config won't enable older options. You have to set it again.
What i suggest:

---Inside kernel:
Xtables
connmarks, conntracks
state
tmpcss
iptables
packet filtering
full nat
mangling
TOS

---As modules:
All you can.

Of course if you have a network with servers like ftp, then put connection tracking ftp inside kernel.
 
Old 04-13-2006, 02:44 PM   #6
Alien_Hominid
Senior Member
 
Registered: Oct 2005
Location: Lithuania
Distribution: Hybrid
Posts: 2,247

Rep: Reputation: 53
Strange, netfilter didn't work for me when compiling modules into the kernel.
 
Old 04-13-2006, 05:06 PM   #7
krizzz
Member
 
Registered: Oct 2004
Location: NY
Distribution: Slackware
Posts: 200

Original Poster
Rep: Reputation: 30
OK, I started from scratch and selected all modules again. I must have screwed something up before, because now it's working well and compiled INTO the KERNEL. So, I confirm that the netfilter modules CAN be compiled into the kernel (at least at my machine .
 
Old 04-13-2006, 10:53 PM   #8
mdarby
Member
 
Registered: Nov 2004
Location: Columbus, Ohio
Distribution: Slackware-Current / Debian
Posts: 795

Rep: Reputation: 30
Very odd. I'm absolutely sure I compiled *all* netfilter/iptables modules into the kernel with no luck.
 
Old 04-13-2006, 11:17 PM   #9
Linux.tar.gz
Senior Member
 
Registered: Dec 2003
Location: Paris
Distribution: Slackware forever.
Posts: 2,534

Rep: Reputation: 100Reputation: 100
So if you see "can't load module" this is normal. Run "iptables -L" (as root) to see if your rules are currently running. If not, i'm afraid you'll have to check again.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Netfilter hooks mousars Programming 2 03-16-2006 01:22 PM
netfilter and pskb alok_sethi Programming 1 03-14-2006 06:09 PM
Netfilter / IPtables SWAT Linux - Newbie 3 11-11-2003 10:04 AM
IPCHAINS or NETFILTER? cottonmouth Linux - Networking 1 11-18-2002 04:54 PM
Netfilter Questions jrmann1999 Linux - Networking 0 06-29-2001 08:32 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware

All times are GMT -5. The time now is 03:44 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration