iptables: No chain/target/match by that name problem with linux-2.6.20
in [Debian]
|
From: Pranav Jadhav on 2 Jan 2008 08:10 Hi , I am using Linux -2.6.20 with iptables-1.3.8. I am getting the iptables error : "/sbin/iptables -I OUTPUT -p udp -m multiport --sport 23,22,161,80,443,53,49 -m state --state NEW,ESTABLISHED,RELATED -o mgmt0 -j ACCEPT" iptables: No chain/target/match by that name iptables: No chain/target/match by that name I have enabled the connection tracking and iptables in kernel configurations. The command works in linux -2.6.11 fedora core 4 machine.I compared the two kernels and found out the differences in the ip_conntrack.ko module is missing In the linux-2.6.20 kernel, instead it has xt_conntrack.ko and nf_conntrack_ipv4.ko modules. The .config file looks like : # # Core Netfilter Configuration # # CONFIG_NETFILTER_NETLINK is not set CONFIG_NF_CONNTRACK_ENABLED=m CONFIG_NF_CONNTRACK_SUPPORT=y # CONFIG_IP_NF_CONNTRACK_SUPPORT is not set CONFIG_NF_CONNTRACK=m CONFIG_NF_CT_ACCT=y CONFIG_NF_CONNTRACK_MARK=y CONFIG_NF_CONNTRACK_EVENTS=y CONFIG_NF_CT_PROTO_GRE=m CONFIG_NF_CT_PROTO_SCTP=m CONFIG_NF_CONNTRACK_AMANDA=m CONFIG_NF_CONNTRACK_FTP=m CONFIG_NF_CONNTRACK_H323=m CONFIG_NF_CONNTRACK_IRC=m CONFIG_NF_CONNTRACK_NETBIOS_NS=m CONFIG_NF_CONNTRACK_PPTP=m CONFIG_NF_CONNTRACK_SIP=m CONFIG_NF_CONNTRACK_TFTP=m CONFIG_NETFILTER_XTABLES=m CONFIG_NETFILTER_XT_TARGET_CLASSIFY=m # # IP: Netfilter Configuration # CONFIG_NF_CONNTRACK_IPV4=m CONFIG_NF_CONNTRACK_PROC_COMPAT=y # CONFIG_IP_NF_QUEUE is not set CONFIG_IP_NF_IPTABLES=m CONFIG_IP_NF_MATCH_IPRANGE=m CONFIG_IP_NF_MATCH_TOS=m CONFIG_IP_NF_MATCH_RECENT=m CONFIG_IP_NF_MATCH_ECN=m CONFIG_IP_NF_MATCH_AH=m CONFIG_IP_NF_MATCH_TTL=m CONFIG_IP_NF_MATCH_OWNER=m CONFIG_IP_NF_MATCH_ADDRTYPE=m CONFIG_IP_NF_FILTER=m CONFIG_IP_NF_TARGET_REJECT=m CONFIG_IP_NF_TARGET_LOG=m CONFIG_IP_NF_TARGET_ULOG=m CONFIG_IP_NF_TARGET_TCPMSS=m CONFIG_NF_NAT=m CONFIG_NF_NAT_NEEDED=y CONFIG_IP_NF_TARGET_MASQUERADE=m CONFIG_IP_NF_TARGET_REDIRECT=m CONFIG_IP_NF_TARGET_NETMAP=m CONFIG_IP_NF_TARGET_SAME=m With Regards Pranav Jadhav
From: Douglas A. Tutty on 2 Jan 2008 12:30 On Wed, Jan 02, 2008 at 06:09:45PM +0530, Pranav Jadhav wrote: > Hi , > > I am using Linux -2.6.20 with iptables-1.3.8. Show us your /etc/apt/sources.list > I am getting the iptables error : > > "/sbin/iptables -I OUTPUT -p udp -m multiport --sport > 23,22,161,80,443,53,49 -m state --state NEW,ESTABLISHED,RELATED -o mgmt0 > -j ACCEPT" > > iptables: No chain/target/match by that name > > iptables: No chain/target/match by that name > > I have enabled the connection tracking and iptables in kernel > configurations. You mean that you recompiled your kernel? Do you still have the problem with a stock Debian kernel? > The command works in linux -2.6.11 fedora core 4 machine.I compared the > two kernels and found out the differences in the ip_conntrack.ko module > is missing > > In the linux-2.6.20 kernel, instead it has xt_conntrack.ko and > nf_conntrack_ipv4.ko modules. -- To UNSUBSCRIBE, email to debian-user-REQUEST(a)lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster(a)lists.debian.org
|
Pages: 1 Prev: RIP Netscape Next: mutt and utf-8 (was: character encoding) |