iptables


Results 1 to 7 of 7

Thread: iptables

  1. #1
    Join Date
    May 2000
    Location
    Tulsa, OK
    Posts
    369

    iptables

    I'm running RedHat 7.3 on a dual processor system. I'm wondering if IPTABLES is compiled into the kernel upon install or do I need to recompile? How can I find out if it's already compiled into my kernel?
    Linux is more friggin' addictive than caffeine.

    Confidence is what you feel when you do not truly understand the situation (or question).

  2. #2
    Join Date
    Jul 2000
    Location
    DC
    Posts
    252
    well, iptables is a binary program that needs to be installed. what you need on your computer related to the kernel are the netfilter modules, look in /lib/modules/2.4.x/kernel/net/ipv4/netfilter/ and see if there are a lot of modules in there.
    Marge: Well I think we should spend the money on something the whole town can be proud of.

    Homer: Like a giant billboard that says "No Fat Chicks"?

    The Simpsons - 9F10 - S04E12
    Marge vs. the Monorail

  3. #3
    Join Date
    Aug 2002
    Location
    Delaware
    Posts
    4,285
    another wasy way is to run iptables -F

    that will flush all the rules in your iptables. if it allows the action then it works, if it doesnt then it will say that iptables is not compiled into your kernel

    As another note, you need a 2.4.x kernel to run iptables. 2.4.x is ipchains. and i believe that 2.0.x is ipfw?

  4. #4
    Join Date
    Feb 2002
    Location
    Marshalltown, Iowa USA
    Posts
    89
    ipchains is 2.2.x.
    Windows = a 32 bit extension to a 16 bit GUI on an 8 bit OS written for a 4 bit architecture by a 2 bit company who can't stand 1 bit of competition.

  5. #5
    Join Date
    Sep 2002
    Location
    Burnaby, BC, Canada
    Posts
    9
    ipchains is 2.2.x

    If you're familiar with ipchains, you can still use it under RH 7.3. I use ipchains myself.

    In RH 7.3, the kernel starts up looking for the ipchains rules file. If it finds one it'll run ipchains first. If a configuration files is not found, then it uses iptable's configuration file.

    So, in the end, if you end up running iptables, make sure you don't leave a rules file for ipchains - or else you're leaving yourself to strange problems and whatever vulnerabilities you've set open in the ipchains rules file

  6. #6
    Join Date
    Aug 2002
    Location
    Delaware
    Posts
    4,285
    meant to say that. stupid typo I raelly should reread what I type more often.
    irc.freenode.net #justlinux The Not So Official JL IRC Channel.
    ¤ Debian ¤ Apt-Get ¤

  7. #7
    Join Date
    Sep 2002
    Posts
    26
    you could always download and complie the new rls of IPTABLES 1.2.7a

    http://www.iptables.org

    if you want to run iptables instead of ipchains (which i've read over and over that iptables is MUCH better)

    then you can kill the startup of ipchains (can even get more drastic and del the binary)

    then have iptables startup and create your ruleset.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •