On Jun 23, 2013, at 3:36 AM, David Iannucci <[email protected]> wrote:
> Hi, I've been receiving the following error for weeks or months now: > > iptables: No chain/target/match by that name. > > I know this is a common thing and that it usually means that something > is missing from your kernel config. I'm a Gentoo user and I'm well > accustomed to kernel config, and have read the docs explaining which > settings are needed. I *think* it's all in there. > > This is just a simple f/w setup running on a single machine with a > single network i/f active at a time. > > Bottom line: I have no idea whether this is really causing a problem or > not. Firewall seems to be working, but I worry that it's really not, and > I'm vulnerable. In typical intelligent human fashion, I've waited months > to get around to seriously addressing it :-\ > > Without further ado, here's the evidence I offer. Note that the error > comes at the beginning of the startup process, right after "Loading > modules..." This is how it's been each time I've checked. More importantly, it is appearing right before the capabilities are reported. That leads me to believe that it is being generated during capability detection. 'shorewall trace check' might give enough information to see what iptables command is generating the message. But given where it is being generated, I would not be concerned that it is causing any type of vulnerability. -Tom Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ This SF.net email is sponsored by Windows: Build for Windows Store. http://p.sf.net/sfu/windows-dev2dev _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
