laforge at gnumonks
Aug 23, 2001, 1:02 PM
Post #2 of 2
(87 views)
Permalink
|
|
Re: Possible problem with iptables 1.2.2 and kernel 2.4.8,9
[In reply to]
|
|
On Tue, Aug 21, 2001 at 07:49:35PM +0200, Martin Josefsson wrote:
> Hi
>
> I just helped a guy in #netfilter that had a problem with kernel 2.4.8
> and 2.4.9 and iptables 1.2.2
>
> this is the error he got:
>
> <falso> root [at] rd:~# /usr/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
> <falso> iptables v1.2.2: can't initialize iptables table `nat': Module is wrong version
> <falso> Perhaps iptables or your kernel needs to be upgraded.
>
> This was on kernel 2.4.9, I recommended him to try the cvs and that worked
> fine. He had the same problem with kernel 2.4.8
the problem is, that he needs to re-compile his iptables package.
As soon as the size of in-kernel data structures change (or some important
constants), you need to recompile the userspace code against the new kernel
headers.
The only reason I can see right now is that his old iptables binary was
compiled with a dropped-table patch applied, and now he is running without
the dropped table.
> Harald, I think you where talking about releasing iptables 1.2.3 sometime
> soon which I think is a great idea now that I've found out that there
> seems to be a problem with the latest kernels and 1.2.2
yes. It wouldn't solve the problem of your friend, however.
I guess I'll find enough time for a 1.2.3 during the next days.
> /Martin
--
Live long and prosper
- Harald Welte / laforge [at] gnumonks http://www.gnumonks.org
============================================================================
GCS/E/IT d- s-: a-- C+++ UL++++$ P+++ L++++$ E--- W- N++ o? K- w--- O- M-
V-- PS+ PE-- Y+ PGP++ t++ 5-- !X !R tv-- b+++ DI? !D G+ e* h+ r% y+(*)
|
