On Mon, Feb 04, 2002 at 03:55:11PM -0500, Chuck Shirley wrote:
> See here:
>
> [root@localhost root]# service bastille-firewall start
> iptables: libiptc/libip4tc.c:384: do_check: Assertion `h->info.valid_hooks == (1 <<
>0 | 1 << 3)' failed.
> /sbin/bastille-netfilter: line 578: 2760 Aborted (core dumped)
>${IPTABLES} -t mangle -F PREROUTING
> Setting up IP spoofing protection... done.
> Allowing traffic from trusted interfaces... done.
> Setting up chains for public/internal interface traffic... done.
> Setting up general rules... done.
> Setting up outbound rules... done.
>
>
> I've looked at the bastille-netfilter script, and the noted failure
> point is at the end of the case-esac block that checks start/stop/status
> on the command line. Unfortunately there I am either too tired, too
> stupid, or some non-linear combination of the two to figure out
> what is making it break. Tell me what to do to help fix the problem
> and I'll do it. By the way, the netfilter does seem to come up.
> Go figure, eh? I tried --rebuilding from the srpm, but the same
> result was had with kernel 2.4.17.12, 13, and with 14 I can't rebuild
> the package (two updates to rpm since I last successfully did the
> --rebuild...(correlation vs. cause problem here...))
I had this trouble (kernel 2.4.17-12mdk. I ended up:
A) Installing the srpm (not --rebuilding...)
B) Following the instructions in iptables-1.2.4/INSTALL (this requires a
kernel recompile...) I found that setting:
BINDIR=/sbin and
LIBDIR=/usr/lib
worked fine.
--
Levi Ramsey
[EMAIL PROTECTED]
[EMAIL PROTECTED]
Star Wars is adolescent nonsense; Close Encounters is obscurantist drivel;
Star Trek can turn your brains to puree of bat guano; and the greatest
science fiction series of all time is Doctor Who! And I'll take you all
on, one-by-one or all in a bunch to back it up!
-- Harlan Ellison
Now that the Patsies have won the Super Bowl, it's up to the Claymores to follow
suit in World Bowl X: 22 June 2002, Dusseldorf, Germany
