I can't seem to get iptables to work in the new 2.4.5-1mdk kernel:
# iptables -L -n
iptables v1.2.1: can't initialize iptables table `filter': Module is wrong version
Perhaps iptables or your kernel needs to be upgraded.
# /tmp/iptables -L -n
iptables v1.1.2: can't initialize iptables table `filter': Module is wrong version
Perhaps iptables or your kernel needs to be upgraded.
# strace -f /tmp/iptables -L -n
execve("/tmp/iptables", ["/tmp/iptables", "-L", "-n"], [/* 39 vars */]) = 0
uname({sys="Linux", node="gw.ilinx", ...}) = 0
brk(0) = 0x8053274
...
munmap(0x4001d000, 16086) = 0
getpid() = 1194
socket(PF_INET, SOCK_RAW, IPPROTO_RAW) = 3
getsockopt(3, SOL_IP, 0x40 /* IP_??? */, 0xbffff7f0, 0xbffff7ec) = -1 EINVAL (Invalid
argument)
write(2, "iptables v1.1.2: ", 17iptables v1.1.2: ) = 17
write(2, "can\'t initialize iptables table "..., 65can't initialize iptables table
`filter': Module is wrong version) = 65
write(2, "\n", 1
) = 1
write(2, "Perhaps iptables or your kernel "..., 54Perhaps iptables or your kernel
needs to be upgraded.
) = 54
_exit(3) = ?
b.
# lsmod
Module Size Used by
ipt_TCPMSS 2672 0 (unused)
iptable_filter 1984 0 (unused)
ip_conntrack_ftp 3664 0 (unused)
ip_nat_ftp 3296 0 (unused)
iptable_nat 14800 1 [ip_nat_ftp]
ip_conntrack 13904 2 [ip_conntrack_ftp ip_nat_ftp iptable_nat]
ip_tables 10976 5 [ipt_TCPMSS iptable_filter iptable_nat]
ipsec 139552 2
pppoe 6640 1 (autoclean)
pppox 1408 1 (autoclean) [pppoe]
af_packet 11792 1 (autoclean)
ppp_generic 17552 3 (autoclean) [pppoe pppox]
tulip 39424 1 (autoclean)
eepro100 16304 1 (autoclean)
The nice thing is that ipsec works again, but no iptables == no
maquerading == useless gateway.
Ideas?
b.
--
Brian J. Murrell
