Loading ...
Sorry, an error occurred while loading the content.

[nslu2-linux] iptables/firewall won't load

Expand Messages
  • rmel
    Configuration: Currently running V2.3R63 + Unslung 6.10-beta with external disk. Attempted Project: http://www.nslu2-linux.org/wiki/HowTo/EnableFirewall Note:
    Message 1 of 4 , Sep 10, 2009
    • 0 Attachment
      Configuration: Currently running V2.3R63 + Unslung 6.10-beta with external
      disk.

      Attempted Project: http://www.nslu2-linux.org/wiki/HowTo/EnableFirewall

      Note: All dependent kernel modules loaded via ipkg, also ran ipkg update and
      upgrade.

      Problem: failure to parse iptables.sh to set firewall rules. For some
      reason this did work once now can't get it to re-load after a Slug re-boot.
      Output of iptables.sh below (a snip-it thereof, and note comments in square
      brackets are mine):

      # /opt/etc/iptables.sh
      Loading kernel modules ...
      /lib/modules/2.4.22-xfs/net/ipv4/netfilter/ip_tables.o: ELF file
      /lib/modules/2.4.22-xfs/kernel/net/ipv4/netfilter/ip_tables.o not for this
      architecture
      [ same message for iptable_filter.o ]
      [ same message as above for ipt_LOG.o ]
      [ each of these three error lines above are associated with a insmod
      command ]
      Flushing Tables ...
      /opt/etc/iptables.sh: line 51: opt/sbin/iptables: not found
      [ more of the same complains for all $IPT command lines ]

      Other observation: as part of the setup of EnableFirewall, after
      installation of kernel modules, and prior to running iptables.sh, depmod -a
      was run, which does not appear to have run successfully. modules.dep located
      in /opt/lib/modules/2.4.22-xfs was written with ZERO bytes (I don't know if
      there are actual symbol dependencies for iptables or not). See output below
      from depmod.

      # depmod -a
      depmod: cannot read ELF header from //opt/lib/modules/2.4.22-xfs/modules.dep
      depmod: cannot read ELF header from
      //opt/lib/modules/2.4.22-xfs/modules.generic_string
      depmod: //opt/lib/modules/2.4.22-xfs/modules.ieee1394map is not an ELF file
      depmod: //opt/lib/modules/2.4.22-xfs/modules.isapnpmap is not an ELF file
      depmod: cannot read ELF header from
      //opt/lib/modules/2.4.22-xfs/modules.parportmap
      depmod: //opt/lib/modules/2.4.22-xfs/modules.pcimap is not an ELF file
      depmod: cannot read ELF header from
      //opt/lib/modules/2.4.22-xfs/modules.pnpbiosmap
      depmod: //opt/lib/modules/2.4.22-xfs/modules.usbmap is not an ELF file

      At this point I am at a loss. Mentioned earlier, the firewall appeared to
      have been working at least once (prior to a re-boot), although the depmod
      behavior was the same, and the iptable.sh output was clean. I may have
      broken something here or gotten lucky initially.

      Anyone have any insight on this one?

      ronM
      --
      View this message in context: http://www.nabble.com/iptables-firewall-won%27t-load-tp25313135p25313135.html
      Sent from the Nslu2 - Linux mailing list archive at Nabble.com.
    Your message has been successfully submitted and would be delivered to recipients shortly.