See here:
[root@localhost root]# service bastille-firewall start
iptables: libiptc/libip4tc.c:384: do_check: Assertion `h->info.valid_hooks == (1 << 0
| 1 << 3)' failed.
/sbin/bastille-netfilter: line 578: 2760 Aborted (core dumped)
${IPTABLES} -t mangle -F PREROUTING
Setting up IP spoofing protection... done.
Allowing traffic from trusted interfaces... done.
Setting up chains for public/internal interface traffic... done.
Setting up general rules... done.
Setting up outbound rules... done.
I've looked at the bastille-netfilter script, and the noted failure
point is at the end of the case-esac block that checks start/stop/status
on the command line. Unfortunately there I am either too tired, too
stupid, or some non-linear combination of the two to figure out
what is making it break. Tell me what to do to help fix the problem
and I'll do it. By the way, the netfilter does seem to come up.
Go figure, eh? I tried --rebuilding from the srpm, but the same
result was had with kernel 2.4.17.12, 13, and with 14 I can't rebuild
the package (two updates to rpm since I last successfully did the
--rebuild...(correlation vs. cause problem here...))
--
*Chuck*
