Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-user

From: "Aleksey V. Kunitskiy" <alexey.kv@×××××.com>
To: gentoo-user@l.g.o
Subject: [gentoo-user] gentoo hardened & shorewall
Date: Sun, 28 Oct 2007 08:43:12
Message-Id: 200710281137.25609.alexey.kv@gmail.com
1 Hi,
2
3 I recently updated to hardened-sources-2.6.22-r8 and had a problem starting
4 shorewall:
5
6 * Starting firewall ...
7 WARNING: Error inserting nf_conntrack_amanda
8 (/lib/modules/2.6.22-hardened-r8/kernel/net/netfilter/nf_conntrack_amanda.ko):
9 Unknown symbol in module, or unknown parameter (see dmesg)
10 FATAL: Error inserting nf_nat_amanda
11 (/lib/modules/2.6.22-hardened-r8/kernel/net/ipv4/netfilter/nf_nat_amanda.ko):
12 Unknown symbol in module, or unknown parameter (see dmesg)
13 WARNING: Error inserting nf_conntrack_amanda
14 (/lib/modules/2.6.22-hardened-r8/kernel/net/netfilter/nf_conntrack_amanda.ko):
15 Unknown symbol in module, or unknown parameter (see dmesg)
16 FATAL: Error inserting nf_nat_amanda
17 (/lib/modules/2.6.22-hardened-r8/kernel/net/ipv4/netfilter/nf_nat_amanda.ko):
18 Unknown symbol in module, or unknown parameter (see dmesg)
19 iptables: No chain/target/match by that name
20 ERROR: Command "/sbin/iptables -A FORWARD -p tcp --tcp-flags SYN,RST
21 SYN -j TCPMSS --clamp-mss-to-pmtu" Failed
22 /sbin/shorewall: line 375: 8362 Terminated ${VARDIR}/.start
23 $debugging start
24
25 here is kernel log:
26 ip_tables: (C) 2000-2006 Netfilter Core Team
27 ctnetlink v0.93: registering with nfnetlink.
28 nf_nat_amanda: Unknown symbol nf_nat_amanda_hook
29 ClusterIP Version 0.8 loaded successfully
30 nf_nat_amanda: Unknown symbol nf_nat_amanda_hook
31
32 Seems that it is kernel fault. I recompiled kernel with nf_nat_amanda and
33 nf_conntrack_amanda in kernel. After that shorewall still fails to start with
34 message:
35
36 iptables: No chain/target/match by that name
37 ERROR: Command "/sbin/iptables -A FORWARD -p tcp --tcp-flags SYN,RST SYN -j
38 TCPMSS --clamp-mss-to-pmtu" Failed
39
40
41 I googled it and searched it on bugs.gentoo.org but I've not found any
42 information about it.
43
44 Thanks fo any suggestions
45
46 --
47 best regards,
48 Aleksey V. Kunitskiy
49 my public GPG/PGP key: http://www.alexey-kv.org.ua/pubkey.asc

Attachments

File name MIME type
shorewall_init text/plain
signature.asc application/pgp-signature
Report Message
Find on MARC Find on Google Groups