[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [cobalt-users] cron errors after gShield firewall install
- Subject: RE: [cobalt-users] cron errors after gShield firewall install
- From: "Robert Roose" <robertr@xxxxxxxxxxxxx>
- Date: Tue Aug 6 02:33:13 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
Module Size Used by
ipt_TOS 1392 22 (autoclean)
ipt_state 1104 6 (autoclean)
ip_conntrack 16080 1 (autoclean) [ipt_state]
I've got this output with lsmod so it seems to be correct.
ipt_LOG 3728 9 (autoclean)
ipt_limit 1408 3 (autoclean)
iptable_mangle 2208 0 (autoclean) (unused)
phoenix-2.4.16C12_V 39792 4
iptable_filter 2208 0 (autoclean) (unused)
ip_tables 11104 6 [ipt_TOS ipt_state ipt_LOG ipt_limit
iptable_mangle iptable_filter]
bwmgmt 24624 1 (autoclean)
natsemi 16176 1
--
Robert
> -----Original Message-----
> From: Tarun Dua [mailto:tarundua@xxxxxxxxxxxx]
> Sent: dinsdag 6 augustus 2002 10:54
> To: cobalt-users@xxxxxxxxxxxxxxx
> Subject: Re: [cobalt-users] cron errors after gShield firewall install
>
>
> hope you loaded the required kernal modules for iptables
> use lsmod to check whether the required iptables related *.o
> modules are loaded or not. lsmod output should show similar output.
>
> ipt_state 1152 2 (autoclean)
> ipt_LOG 3984 9 (autoclean)
> ipt_REJECT 3552 9 (autoclean)
> ipt_limit 1488 3 (autoclean)
> iptable_mangle 2256 0 (autoclean) (unused)
> iptable_nat 18224 1 (autoclean) [ip_nat_ftp]
> ip_conntrack 16944 3 (autoclean) [ip_nat_ftp
> ip_conntrack_ftp
> ipt_state iptable_nat]
> iptable_filter 2256 0 (autoclean) (unused)
> ip_tables 11392 9 [ipt_state ipt_LOG
> ipt_REJECT ipt_limit
> iptable_mangle iptable_nat iptable_filter]
>
> Its not difficult :) you can definitely try to configure the
> iptables yourself with logging instead of using gshield.
>
> Regards
> --
> Tarun Dua
> Sr. Exec. System Administrator
> ------------------------------------------------
> Pugmarks InterWeb Pvt. Ltd. INDIA Tel: (172) 622-753, 54, 55
> Fax: 91 (172) 645-906 Pugmarks Inc. USA Tel: (630) 571-0699,
> Fax: (630) 571-0642 http://www.pugmarks.net
> > Hiya again :)
> >
> > after trying PMFirewall on my RaQ550 (wich doesn't work
> with iptables)
> > I installed gShield firewall.
> >
> > Everything's working fine on the firewall part but I get
> cron.hourly
> > mails about iptables..
> >
> > This is the error I'm getting:
> >
> > iptables: Table does not exist (do you need to insmod?)
> > iptables: No chain/target/match by that name
> > iptables: No chain/target/match by that name
> > iptables: No chain/target/match by that name
> > iptables: No chain/target/match by that name
> >
> > If I disable the firewall the error's are gone but when I
> re-enable it
> > the messages return.
> >
> > In my /etc/cron.hourly there's a file called log_traffic
> > and this is in it:
> >
> > # Update the accounting rules and the ipchains/tables
> config file if [
> > $TABLES ]; then
> > echo "# $FWCONFIGFILE
> > # This file is automatically generated by log_traffic.
> > # Any manual changes will be lost
> > $IPTABLES -N acctin > /dev/null 2>&1
> > $IPTABLES -N acctout > /dev/null 2>&1
> > $IPTABLES -F acctin
> > $IPTABLES -F acctout
> > $IPTABLES -I INPUT 1 -j acctin
> > $IPTABLES -I OUTPUT 1 -j acctout" > $FWCONFIGFILE
> > else
> > echo "# $FWCONFIGFILE
> > # This file is automatically generated by log_traffic.
> > # Any manual changes will be lost
> > $IPCHAINS -N acctin
> > $IPCHAINS -N acctout
> > $IPCHAINS -F acctin
> > $IPCHAINS -F acctout
> > $IPCHAINS -I input 2 -j acctin
> > $IPCHAINS -I output 2 -j acctout" > $FWCONFIGFILE
> >
> > now, I don't get it.. :P
> >
> > It seems that the firewall clears the statements and the
> traffic log
> > uses some statements???
>
>
> _____________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To subscribe/unsubscribe, or to SEARCH THE ARCHIVES, go to:
> http://list.cobalt.com/mailman/listinfo/cobalt> -users
>