| 1 |
This is an issue related to you alone, I'm running a 64 bit hardened |
| 2 |
install and am not having any issues with -m state. It looks like you |
| 3 |
missed an option in your kernel. You either don't have support enabled |
| 4 |
or if it's a module you don't have it loaded. |
| 5 |
Check: |
| 6 |
Networking ---> |
| 7 |
Networking option ---> |
| 8 |
[*] Network packet filtering (replaces ipchains) ---> |
| 9 |
Core Netfilter Configuration ---> |
| 10 |
<*> Netfilter Xtables support (required for ip_tables) |
| 11 |
<*> "state" match support |
| 12 |
|
| 13 |
John Schember |
| 14 |
|
| 15 |
|
| 16 |
On Mon, 2006-10-23 at 00:38 -0600, Jason Booth wrote: |
| 17 |
> Ever since I got this comp about a month ago, my firewall script no longer |
| 18 |
> works. basically, anything that uses -m state --state fails: |
| 19 |
> |
| 20 |
> lazybird ~ # iptables -I INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT |
| 21 |
> iptables: No chain/target/match by that name |
| 22 |
> |
| 23 |
> This has only happened with 64-bit and hardened kernel. I believe I put in |
| 24 |
> support for all the modules both in Xtables and IPtables (compiled in kernel, |
| 25 |
> not as modules) |
| 26 |
> |
| 27 |
> Is this a known issue or has anyone had this problem? |
| 28 |
> |
| 29 |
> TIA, |
| 30 |
> Jason |
| 31 |
> |
| 32 |
> 2.6.17-hardened-r1 x86_64 AMD Athlon(tm) 64 Processor 3500+ |
| 33 |
> -- |
| 34 |
> gpg public key: http://lazybird.hyperintelligent.net/~jbooth/jbooth_key.asc |
| 35 |
|
| 36 |
-- |
| 37 |
gentoo-hardened@g.o mailing list |
Archives