| 1 |
Hi everyone, |
| 2 |
|
| 3 |
I have a newly provisioned machine and for the life of me, I can't get |
| 4 |
iptables working. Here is the error: |
| 5 |
|
| 6 |
# iptables -L |
| 7 |
iptables v1.6.1: can't initialize iptables table `filter': Table does |
| 8 |
not exist (do you need to i |
| 9 |
nsmod?) |
| 10 |
Perhaps iptables or your kernel needs to be upgraded. |
| 11 |
|
| 12 |
# lsmod |
| 13 |
Module Size Used by |
| 14 |
ip_tables 24576 0 |
| 15 |
|
| 16 |
I see the same error after manually modprobing iptable_filter: |
| 17 |
|
| 18 |
# modprobe iptable_filter |
| 19 |
# lsmod |
| 20 |
Module Size Used by |
| 21 |
iptable_filter 16384 0 |
| 22 |
ip_tables 24576 1 iptable_filter |
| 23 |
|
| 24 |
I've also tried building it into the kernel, with no luck. On the |
| 25 |
userspace-side I've went as far is doing a full "emerge -e iptables". |
| 26 |
I tried upgrading to iptables-1.8 too. I also tried upgrading kernel |
| 27 |
headers to match the version of the kernel I'm currnetly running. |
| 28 |
Nothing I do can get it to work. |
| 29 |
|
| 30 |
# uname -r |
| 31 |
4.18.18 |
| 32 |
|
| 33 |
Thanks in advance for any suggestions! |
| 34 |
-Andrey |
| 35 |
|
| 36 |
P.S. Below are my related kernel settings. I tried to make them all |
| 37 |
built-in, but that didn't work. |
| 38 |
|
| 39 |
# zcat /proc/config.gz | grep NETF | grep -v XT |
| 40 |
CONFIG_NETFILTER=y |
| 41 |
CONFIG_NETFILTER_ADVANCED=y |
| 42 |
CONFIG_BRIDGE_NETFILTER=y |
| 43 |
CONFIG_NETFILTER_INGRESS=y |
| 44 |
CONFIG_NETFILTER_NETLINK=y |
| 45 |
CONFIG_NETFILTER_FAMILY_BRIDGE=y |
| 46 |
CONFIG_NETFILTER_FAMILY_ARP=y |
| 47 |
CONFIG_NETFILTER_NETLINK_ACCT=y |
| 48 |
CONFIG_NETFILTER_NETLINK_QUEUE=y |
| 49 |
CONFIG_NETFILTER_NETLINK_LOG=y |
| 50 |
CONFIG_NETFILTER_CONNCOUNT=y |
| 51 |
CONFIG_NETFILTER_NETLINK_GLUE_CT=y |
| 52 |
CONFIG_NETFILTER_SYNPROXY=y |
| 53 |
|
| 54 |
# zcat /proc/config.gz | grep IPTA |
| 55 |
CONFIG_IP_NF_IPTABLES=m |
| 56 |
CONFIG_IP6_NF_IPTABLES=y |
| 57 |
|
| 58 |
# zcat /proc/config.gz | grep IP_NF |
| 59 |
CONFIG_IP_NF_IPTABLES=m |
| 60 |
CONFIG_IP_NF_MATCH_AH=m |
| 61 |
CONFIG_IP_NF_MATCH_ECN=m |
| 62 |
CONFIG_IP_NF_MATCH_RPFILTER=m |
| 63 |
CONFIG_IP_NF_MATCH_TTL=m |
| 64 |
CONFIG_IP_NF_FILTER=m |
| 65 |
CONFIG_IP_NF_TARGET_REJECT=m |
| 66 |
CONFIG_IP_NF_TARGET_SYNPROXY=m |
| 67 |
CONFIG_IP_NF_NAT=m |
| 68 |
CONFIG_IP_NF_TARGET_MASQUERADE=m |
| 69 |
CONFIG_IP_NF_TARGET_NETMAP=m |
| 70 |
CONFIG_IP_NF_TARGET_REDIRECT=m |
| 71 |
CONFIG_IP_NF_MANGLE=m |
| 72 |
CONFIG_IP_NF_TARGET_CLUSTERIP=m |
| 73 |
CONFIG_IP_NF_TARGET_ECN=m |
| 74 |
CONFIG_IP_NF_TARGET_TTL=m |
| 75 |
# CONFIG_IP_NF_RAW is not set |
| 76 |
CONFIG_IP_NF_SECURITY=m |
| 77 |
CONFIG_IP_NF_ARPTABLES=y |
| 78 |
CONFIG_IP_NF_ARPFILTER=y |
| 79 |
CONFIG_IP_NF_ARP_MANGLE=y |
Archives