wapcaplet
11-20-2002, 11:10 AM
Okay, I've found this same question several times here but still no solution that seems to work.
I'm using Mandrake 8.1, and am trying to configure IP masquerading (to share my cable internet connection with the local network). Both the cable connection (eth1) and local network (on eth0) are working fine.
I have iptables 1.2.5 installed, and have *removed* all traces of ipchains, as far as I know. Since this is kernel 2.4.8, everything points me to iptables as the better alternative.
Configured everything using InteractiveBastille, which is supposed to support both ipchains and iptables. Running a test of the server with:
/etc/rc.d/init.d/bastille-firewall start
Spits out lots of errors like:
iptables v1.2.5: can't initialize iptables table `filter': Module is wrong version
Perhaps iptables or your kernel needs to be upgraded.
iptables v1.2.5: can't initialize iptables table `nat': Module is wrong version
Perhaps iptables or your kernel needs to be upgraded.
iptables -L also gives the first error (about filter) but not the second).
Here is what lsmod tells me:
iptable_filter 2048 0 (unused)
ip_nat_ftp 3392 0 (unused)
ipt_LOG 3776 0 (unused)
ip_conntrack_ftp 3792 0 (unused)
iptable_nat 16560 1 [ip_nat_ftp]
ip_tables 11488 5 [iptable_filter ipt_LOG iptable_nat]
ip_conntrack 15600 2 [ip_nat_ftp ip_conntrack_ftp iptable_nat]
It looks like the modules are loaded; they're just not happy with this kernel version. Weird, because:
rpm -q --requires iptables-1.2.5-1.1mdk
Says:
kernel >= 2.4.8
I have considered kernel upgrade, but I'm not confident of my ability to do that just yet. I've looked at newer versions of iptables, but they typically require a newer kernel.
So should I maybe get an older version of iptables? Or is there just something obvious I'm missing?
Help would be greatly appreciated. Let me know if there's any other output I should post.
Thanks in advance!
I'm using Mandrake 8.1, and am trying to configure IP masquerading (to share my cable internet connection with the local network). Both the cable connection (eth1) and local network (on eth0) are working fine.
I have iptables 1.2.5 installed, and have *removed* all traces of ipchains, as far as I know. Since this is kernel 2.4.8, everything points me to iptables as the better alternative.
Configured everything using InteractiveBastille, which is supposed to support both ipchains and iptables. Running a test of the server with:
/etc/rc.d/init.d/bastille-firewall start
Spits out lots of errors like:
iptables v1.2.5: can't initialize iptables table `filter': Module is wrong version
Perhaps iptables or your kernel needs to be upgraded.
iptables v1.2.5: can't initialize iptables table `nat': Module is wrong version
Perhaps iptables or your kernel needs to be upgraded.
iptables -L also gives the first error (about filter) but not the second).
Here is what lsmod tells me:
iptable_filter 2048 0 (unused)
ip_nat_ftp 3392 0 (unused)
ipt_LOG 3776 0 (unused)
ip_conntrack_ftp 3792 0 (unused)
iptable_nat 16560 1 [ip_nat_ftp]
ip_tables 11488 5 [iptable_filter ipt_LOG iptable_nat]
ip_conntrack 15600 2 [ip_nat_ftp ip_conntrack_ftp iptable_nat]
It looks like the modules are loaded; they're just not happy with this kernel version. Weird, because:
rpm -q --requires iptables-1.2.5-1.1mdk
Says:
kernel >= 2.4.8
I have considered kernel upgrade, but I'm not confident of my ability to do that just yet. I've looked at newer versions of iptables, but they typically require a newer kernel.
So should I maybe get an older version of iptables? Or is there just something obvious I'm missing?
Help would be greatly appreciated. Let me know if there's any other output I should post.
Thanks in advance!