[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] cron errors after gShield firewall install

Subject: Re: [cobalt-users] cron errors after gShield firewall install
From: "Tarun Dua" <tarundua@xxxxxxxxxxxx>
Date: Tue Aug 6 02:49:01 2002
List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>

whats the output of iptables -L?
Regards

--
Tarun Dua
Sr. Exec. System Administrator
------------------------------------------------
Pugmarks InterWeb Pvt. Ltd. INDIA Tel: (172) 622-753, 54, 55 Fax: 91 (172)
645-906
Pugmarks Inc. USA Tel: (630) 571-0699, Fax: (630) 571-0642
http://www.pugmarks.net
----- Original Message -----
From: "Robert Roose" <robertr@xxxxxxxxxxxxx>
To: <cobalt-users@xxxxxxxxxxxxxxx>
Sent: Tuesday, August 06, 2002 2:58 PM
Subject: RE: [cobalt-users] cron errors after gShield firewall install


> Module                  Size  Used by
> ipt_TOS                 1392  22 (autoclean)
> ipt_state               1104   6 (autoclean)
> ip_conntrack           16080   1 (autoclean) [ipt_state]
> I've got this output with lsmod so it seems to be correct.
>
> ipt_LOG                 3728   9 (autoclean)
> ipt_limit               1408   3 (autoclean)
> iptable_mangle          2208   0 (autoclean) (unused)
> phoenix-2.4.16C12_V    39792   4
> iptable_filter          2208   0 (autoclean) (unused)
> ip_tables              11104   6 [ipt_TOS ipt_state ipt_LOG ipt_limit
> iptable_mangle iptable_filter]
> bwmgmt                 24624   1 (autoclean)
> natsemi                16176   1
>
> --
> Robert
>
> > -----Original Message-----
> > From: Tarun Dua [mailto:tarundua@xxxxxxxxxxxx]
> > Sent: dinsdag 6 augustus 2002 10:54
> > To: cobalt-users@xxxxxxxxxxxxxxx
> > Subject: Re: [cobalt-users] cron errors after gShield firewall install
> >
> >
> > hope you loaded the required kernal modules for iptables
> > use lsmod to check whether the required iptables related *.o
> > modules are loaded or not. lsmod output should show similar output.
> >
> > ipt_state               1152   2  (autoclean)
> > ipt_LOG                 3984   9  (autoclean)
> > ipt_REJECT              3552   9  (autoclean)
> > ipt_limit               1488   3  (autoclean)
> > iptable_mangle          2256   0  (autoclean) (unused)
> > iptable_nat            18224   1  (autoclean) [ip_nat_ftp]
> > ip_conntrack           16944   3  (autoclean) [ip_nat_ftp
> > ip_conntrack_ftp
> > ipt_state iptable_nat]
> > iptable_filter          2256   0  (autoclean) (unused)
> > ip_tables              11392   9  [ipt_state ipt_LOG
> > ipt_REJECT ipt_limit
> > iptable_mangle iptable_nat iptable_filter]
> >
> > Its not difficult :) you can definitely try to configure the
> > iptables yourself with logging instead of using gshield.
> >
> > Regards
> > --
> > Tarun Dua
> > Sr. Exec. System Administrator
> > ------------------------------------------------
> > Pugmarks InterWeb Pvt. Ltd. INDIA Tel: (172) 622-753, 54, 55
> > Fax: 91 (172) 645-906 Pugmarks Inc. USA Tel: (630) 571-0699,
> > Fax: (630) 571-0642 http://www.pugmarks.net
> > > Hiya again :)
> > >
> > > after trying PMFirewall on my RaQ550 (wich doesn't work
> > with iptables)
> > > I installed gShield firewall.
> > >
> > > Everything's working fine on the firewall part but I get
> > cron.hourly
> > > mails about iptables..
> > >
> > > This is the error I'm getting:
> > >
> > > iptables: Table does not exist (do you need to insmod?)
> > > iptables: No chain/target/match by that name
> > > iptables: No chain/target/match by that name
> > > iptables: No chain/target/match by that name
> > > iptables: No chain/target/match by that name
> > >
> > > If I disable the firewall the error's are gone but when I
> > re-enable it
> > > the messages return.
> > >
> > > In my /etc/cron.hourly there's a file called log_traffic
> > > and this is in it:
> > >
> > > # Update the accounting rules and the ipchains/tables
> > config file if

> > > $TABLES ]; then
> > >         echo "# $FWCONFIGFILE
> > > # This file is automatically generated by log_traffic.
> > > # Any manual changes will be lost
> > > $IPTABLES -N acctin > /dev/null 2>&1
> > > $IPTABLES -N acctout > /dev/null 2>&1
> > > $IPTABLES -F acctin
> > > $IPTABLES -F acctout
> > > $IPTABLES -I INPUT 1 -j acctin
> > > $IPTABLES -I OUTPUT 1 -j acctout" > $FWCONFIGFILE
> > > else
> > >         echo "# $FWCONFIGFILE
> > > # This file is automatically generated by log_traffic.
> > > # Any manual changes will be lost
> > > $IPCHAINS -N acctin
> > > $IPCHAINS -N acctout
> > > $IPCHAINS -F acctin
> > > $IPCHAINS -F acctout
> > > $IPCHAINS -I input 2 -j acctin
> > > $IPCHAINS -I output 2 -j acctout" > $FWCONFIGFILE
> > >
> > > now, I don't get it.. :P
> > >
> > > It seems that the firewall clears the statements and the
> > traffic log
> > > uses some statements???
> >
> >
> > _____________________________________
> > cobalt-users mailing list
> > cobalt-users@xxxxxxxxxxxxxxx
> > To subscribe/unsubscribe, or to SEARCH THE ARCHIVES, go to:
> > http://list.cobalt.com/mailman/listinfo/cobalt> -users
> >
>
> _____________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To subscribe/unsubscribe, or to SEARCH THE ARCHIVES, go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users

References:
- RE: [cobalt-users] cron errors after gShield firewall install
  - From: Robert Roose

Prev by Date: RE: [cobalt-users] cron errors after gShield firewall install
Next by Date: [cobalt-users] Virtual nameservers for clients
Previous by thread: RE: [cobalt-users] cron errors after gShield firewall install
Next by thread: RE: [cobalt-users] cron errors after gShield firewall install

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index