iptables problem [Archiv] - linuxforen.de -- User helfen Usern

Archiv verlassen und diese Seite im Standarddesign anzeigen : iptables problem

H-net

09.11.05, 17:16

hi...

also....

ich habe einen server mit dem kernel 2.6.13.3-amd unter debian... nun geht da aber iptables nicht gescheit. es komtm immer sowas wie:

modprobe: Can't locate module ip_tables
iptables v1.2.11: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
modprobe: QM_MODULES: Function not implemented

aber die module wären eigentlich da:
ll /lib/modules/2.6.13.3-amd/kernel/net/ipv4/netfilter/
total 532
-rw-r--r-- 1 root root 16569 Oct 4 14:06 arp_tables.ko
-rw-r--r-- 1 root root 4494 Oct 4 14:06 arpt_mangle.ko
-rw-r--r-- 1 root root 5044 Oct 4 14:06 arptable_filter.ko
-rw-r--r-- 1 root root 51862 Oct 4 14:06 ip_conntrack.ko
-rw-r--r-- 1 root root 6649 Oct 4 14:06 ip_conntrack_amanda.ko
-rw-r--r-- 1 root root 9434 Oct 4 14:06 ip_conntrack_ftp.ko
-rw-r--r-- 1 root root 8696 Oct 4 14:06 ip_conntrack_irc.ko
-rw-r--r-- 1 root root 10144 Oct 4 14:06 ip_conntrack_proto_sctp.ko
-rw-r--r-- 1 root root 6273 Oct 4 14:06 ip_conntrack_tftp.ko
-rw-r--r-- 1 root root 4067 Oct 4 14:06 ip_nat_amanda.ko
-rw-r--r-- 1 root root 5506 Oct 4 14:06 ip_nat_ftp.ko
-rw-r--r-- 1 root root 4582 Oct 4 14:06 ip_nat_irc.ko
-rw-r--r-- 1 root root 13704 Oct 4 14:06 ip_nat_snmp_basic.ko
-rw-r--r-- 1 root root 3594 Oct 4 14:06 ip_nat_tftp.ko
-rw-r--r-- 1 root root 14398 Oct 4 14:06 ip_queue.ko
-rw-r--r-- 1 root root 25907 Oct 4 14:06 ip_tables.ko
-rw-r--r-- 1 root root 4041 Oct 4 14:06 ipt_CLASSIFY.ko
-rw-r--r-- 1 root root 12430 Oct 4 14:06 ipt_CLUSTERIP.ko
-rw-r--r-- 1 root root 4025 Oct 4 14:06 ipt_CONNMARK.ko
-rw-r--r-- 1 root root 4359 Oct 4 14:06 ipt_DSCP.ko
-rw-r--r-- 1 root root 5244 Oct 4 14:06 ipt_ECN.ko
-rw-r--r-- 1 root root 10529 Oct 4 14:06 ipt_LOG.ko
-rw-r--r-- 1 root root 4486 Oct 4 14:06 ipt_MARK.ko
-rw-r--r-- 1 root root 5439 Oct 4 14:06 ipt_MASQUERADE.ko
-rw-r--r-- 1 root root 3800 Oct 4 14:06 ipt_NETMAP.ko
-rw-r--r-- 1 root root 3866 Oct 4 14:06 ipt_NOTRACK.ko
-rw-r--r-- 1 root root 3821 Oct 4 14:06 ipt_REDIRECT.ko
-rw-r--r-- 1 root root 7774 Oct 4 14:06 ipt_REJECT.ko
-rw-r--r-- 1 root root 4286 Oct 4 14:06 ipt_SAME.ko
-rw-r--r-- 1 root root 6378 Oct 4 14:06 ipt_TCPMSS.ko
-rw-r--r-- 1 root root 4356 Oct 4 14:06 ipt_TOS.ko
-rw-r--r-- 1 root root 9755 Oct 4 14:06 ipt_ULOG.ko
-rw-r--r-- 1 root root 3847 Oct 4 14:06 ipt_addrtype.ko
-rw-r--r-- 1 root root 3712 Oct 4 14:06 ipt_ah.ko
-rw-r--r-- 1 root root 3237 Oct 4 14:06 ipt_connmark.ko
-rw-r--r-- 1 root root 4192 Oct 4 14:06 ipt_conntrack.ko
-rw-r--r-- 1 root root 3225 Oct 4 14:06 ipt_dscp.ko
-rw-r--r-- 1 root root 3951 Oct 4 14:06 ipt_ecn.ko
-rw-r--r-- 1 root root 3715 Oct 4 14:06 ipt_esp.ko
-rw-r--r-- 1 root root 3760 Oct 4 14:06 ipt_helper.ko
-rw-r--r-- 1 root root 3485 Oct 4 14:06 ipt_iprange.ko
-rw-r--r-- 1 root root 3359 Oct 4 14:06 ipt_length.ko
-rw-r--r-- 1 root root 4213 Oct 4 14:06 ipt_limit.ko
-rw-r--r-- 1 root root 3665 Oct 4 14:06 ipt_mac.ko
-rw-r--r-- 1 root root 3353 Oct 4 14:06 ipt_mark.ko
-rw-r--r-- 1 root root 4284 Oct 4 14:06 ipt_multiport.ko
-rw-r--r-- 1 root root 5014 Oct 4 14:06 ipt_owner.ko
-rw-r--r-- 1 root root 3860 Oct 4 14:06 ipt_physdev.ko
-rw-r--r-- 1 root root 3362 Oct 4 14:06 ipt_pkttype.ko
-rw-r--r-- 1 root root 3666 Oct 4 14:06 ipt_realm.ko
-rw-r--r-- 1 root root 14381 Oct 4 14:06 ipt_recent.ko
-rw-r--r-- 1 root root 4551 Oct 4 14:06 ipt_sctp.ko
-rw-r--r-- 1 root root 3636 Oct 4 14:06 ipt_state.ko
-rw-r--r-- 1 root root 4096 Oct 4 14:06 ipt_tcpmss.ko
-rw-r--r-- 1 root root 3191 Oct 4 14:06 ipt_tos.ko
-rw-r--r-- 1 root root 3653 Oct 4 14:06 ipt_ttl.ko
-rw-r--r-- 1 root root 6110 Oct 4 14:06 iptable_filter.ko
-rw-r--r-- 1 root root 6185 Oct 4 14:06 iptable_mangle.ko
-rw-r--r-- 1 root root 28219 Oct 4 14:06 iptable_nat.ko
-rw-r--r-- 1 root root 4440 Oct 4 14:06 iptable_raw.ko

nun versuche ich bereits den ganzen tag einen neuen kernel zu kompilieren, aber iptables geht NIE... kann mir jemand weiterhelfen? oder kennt jemand einen debian-source wo ich einen funktionierenden kernel mit iptables runterladen kann??

HILFE

mfg

geronet

09.11.05, 19:34

Installierst du nur den Kernel oder die Module auch dazu?

H-net

09.11.05, 19:58

ich versteh net was du meinst... könntest du das a weng ausführlicher ausformulieren? würde mich freuen :-)

ps: falls du meinst ob ich make modules_install und make install mache, ja

mfg

H-net

09.11.05, 20:14

was mir gerade aufgefallen ist, das beim kompilieren zum schluss imemr kommt:

depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ip_nat_snmp_basic.ko
depmod: ip_conntrack_helper_register
depmod: ip_conntrack_helper_unregister
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ip_nat_tftp.ko
depmod: ip_conntrack_expect_related
depmod: ip_nat_follow_master
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_CLASSIFY.ko
depmod: ipt_unregister_target
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_CLUSTERIP.ko
depmod: ipt_unregister_target
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_CONNMARK.ko
depmod: ipt_unregister_target
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_DSCP.ko
depmod: ipt_unregister_target
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_ECN.ko
depmod: ipt_unregister_target
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_LOG.ko
depmod: ipt_unregister_target
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_MARK.ko
depmod: ipt_unregister_target
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_MASQUERADE.ko
depmod: ip_ct_iterate_cleanup
depmod: ipt_unregister_target
depmod: ip_nat_setup_info
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_NETMAP.ko
depmod: ipt_unregister_target
depmod: ip_nat_setup_info
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_NOTRACK.ko
depmod: ipt_unregister_target
depmod: ip_conntrack_untracked
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_REDIRECT.ko
depmod: ipt_unregister_target
depmod: ip_nat_setup_info
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_REJECT.ko
depmod: ipt_unregister_target
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_SAME.ko
depmod: ipt_unregister_target
depmod: ip_nat_setup_info
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_TCPMSS.ko
depmod: ipt_unregister_target
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_TOS.ko
depmod: ipt_unregister_target
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_ULOG.ko
depmod: ipt_unregister_target
depmod: ipt_register_target
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_addrtype.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_ah.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_comment.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_connmark.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_conntrack.ko
depmod: need_ip_conntrack
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: ip_conntrack_untracked
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_dscp.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_ecn.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_esp.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_hashlimit.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_helper.ko
depmod: need_ip_conntrack
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: ip_conntrack_lock
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_iprange.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_length.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_limit.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_mac.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_mark.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_multiport.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_owner.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_pkttype.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_realm.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_recent.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_sctp.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_state.ko
depmod: need_ip_conntrack
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: ip_conntrack_untracked
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_tcpmss.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_tos.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/ipt_ttl.ko
depmod: ipt_register_match
depmod: ipt_unregister_match
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/iptable_filter.ko
depmod: ipt_unregister_table
depmod: ipt_do_table
depmod: ipt_register_table
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/iptable_mangle.ko
depmod: ipt_unregister_table
depmod: ipt_do_table
depmod: ipt_register_table
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/iptable_nat.ko
depmod: ip_ct_iterate_cleanup
depmod: ip_conntrack_tcp_update
depmod: ip_conntrack_destroyed
depmod: ipt_unregister_table
depmod: need_ip_conntrack
depmod: ipt_do_table
depmod: ipt_unregister_target
depmod: ipt_register_table
depmod: ip_ct_protos
depmod: ip_conntrack_alter_reply
depmod: ip_conntrack_htable_size
depmod: ip_ct_gather_frags
depmod: ip_conntrack_tuple_taken
depmod: ip_ct_get_tuple
depmod: ip_conntrack_untracked
depmod: ipt_register_target
depmod: invert_tuplepr
depmod: *** Unresolved symbols in /lib/modules/2.6.13.3/kernel/net/ipv4/netfilter/iptable_raw.ko
depmod: ipt_unregister_table
depmod: ipt_do_table
depmod: ipt_register_table

da steht immer wieder "unresolved symbols in....." ist das ein fehler? wenn ja, ich kann doch nichts dafür das das passiert...

WAS KANN ICH MACHEN?

gruß

Gronau

11.11.05, 09:21

Sind die module auch im library-pfad von iptables (bei mir /usr/lib/iptables/)?

H-net

11.11.05, 09:34

das problem hat sich gelöst...

war dummheit von mir... habe den server betriebsvertig bekommen... bin davon ausgegangen das die module-init-tools installiert sind...
naja... sie waren nicht installiert.... jetzt geht alles einwandfrei....

trozdem danke :-)

gruß