IRC Networks
Irc Logs Stats
Start date: 2007-09-27 02:48:27
Last update: 2008-10-24 20:19:38
Channels: 41
Logged Lines: 6230436
Size: 1834.79 MB
Powered by
Channel Info
Network: freenodeChannel: #iptables |
Search in www.irclog.org
Log from #iptables at freenode 2006-08-02
[06:54]<zj2wow0>If you want to check for state, you need -m state in there
[06:55]<zj2wow0>Wait, ignore that - it's there
[06:55]<zj2wow0>:/
[06:55]<mzsrcj>well i think theres somethnig wrong with my kernel or some module or osmething for using states imj ust gonna take all states out for now
[06:57]<zj2wow0>http://mrsako.pastebin.ca/111069 <-- should work. If not, I'm definitely with danieldg on looking at the kernel config
[06:57]<zj2wow0>danieldg: btw, I'll edit that document to reflect the fact that it's written for Slackware, but the general idea is the same across distros
[06:57]<mzsrcj>hold on: i just got the script to execute, i took out everything about the state out
[06:58]<zj2wow0>yep, kernel config
[06:58]<mzsrcj>so its something wrong with the kernel itself
[06:58]<mzsrcj>what kind of stuff would i have ot look into to fix it
[06:58]<mrrynfmr>do you have the .config file for the kernel?
[06:59]<mzsrcj>where is it located?
[06:59]<mrrynfmr>mine are all in /boot/config-`uname -r`
[06:59]<mrrynfmr>or try /proc/config.gz
[07:00]<mzsrcj>i just did this thing on with this javaappplet that comes with webmin to search the computer, theres no files named config.gz or .config
[07:00]<zj2wow0>MrSako: what distro?
[07:00]<mzsrcj>CentOS 4.2
[07:00]<mzsrcj>this is a VPS im renting it could be a setup error by the hosters
[07:00]<zj2wow0>er, guh
[07:01]<mzsrcj>is guh bad?
[07:01]<zj2wow0>hehe, that was supposed to be "ugh"
[07:01]<mzsrcj>oh gotcha :)
[07:02]<mzsrcj>i think im going to submit a support ticket to my VPS host
[07:02]<mzsrcj>what do you think would be a good thing to type
[07:02]<mzsrcj>im looking for my .config file and i cant find it?
[07:03]<mrrynfmr>I don't think .config is the official name... kernel configuration might be better
[07:05]<mzsrcj>kernel configuration file
[07:13]<vyrn-vnzsr>MrSako: CentOS is a forked from RHEL iirc, try ls -l /boot/config-`uname -r`&&grep STATE /boot/config-`uname -r`
[07:13]<mzsrcj>type that in?
[07:13]<vyrn-vnzsr>ya
[07:15]<mrrynfmr>if that works, also grep for CONNTRACK
[07:15]<mzsrcj>my /boot directory is completely empty
[07:16]<vyrn-vnzsr>unmounted perhaps?
[07:16]<mzsrcj>i woudlnt know
[07:16]<vyrn-vnzsr>mount /boot
[07:17]<mzsrcj>i just typed grep CONNTRACK so i think its spending along time to grep through my machine can i stop it somehow?
[07:17]<mrrynfmr>ctrl-C
[07:17]<mrrynfmr>it's grepping your input
[07:18]<mzsrcj># mount /boot
[07:18]<mzsrcj>mount: can't find /boot in /etc/fstab or /etc/mtab
[07:18]<mrrynfmr>vice-versa: it's a VPS, so I don't think there is a /boot that can be mounted
[07:18]<mzsrcj>yeh i forgot to mention that
[07:18]<vyrn-vnzsr>aye, srry missed that
[07:20]<mzsrcj>whats the correct grep syntax to find a file?
[07:20]<mzsrcj>like im looking for a file named blah under a certain directory
[07:21]<mrrynfmr>you'd use `find` for that
[07:21]<mzsrcj>oh
[07:21]<mzsrcj>greps for finding text in a file
[07:21]<mrrynfmr>find / -iname '*config*'
[07:28]<mzsrcj>do you think that the connection state commands wont execute becasue im missnig the conntrack file?
[07:29]<mrrynfmr>not the file itself, but the kernel module that creates it (which keeps track of the states)
[07:29]<mrrynfmr>the files in /proc aren't files
[07:39]<vyrn-vnzsr>MrSako: what kernel is the vps using?
[07:39]<mzsrcj>how do i check the kernel version?
[07:39]<vyrn-vnzsr>uname -r
[07:40]<mzsrcj>2.6.8-022stab070.9-smp
[07:44]<vyrn-vnzsr>MrSako: does lsmod show ipt_state ?
[07:44]<mzsrcj>lsmod doesnt return anything
[07:46]<vyrn-vnzsr>must be another vps exclusion perhaps, dunno never used one
[07:48]<mzsrcj>what does lsmod supposed to do?
[07:49]<vyrn-vnzsr>lists kernel modules
[07:51]<vyrn-vnzsr>does a vps have a proc fs?
[07:54]<mzsrcj>vice-versa: you mean the command proc fs? if so no
[07:54]<vyrn-vnzsr>no, ls -ld /proc
[07:55]<mzsrcj>[root@vps boot]# ls -ld /proc
[07:55]<mzsrcj>dr-xr-xr-x 805 root root 0 Jul 31 15:37 /proc
[07:56]<vyrn-vnzsr>I'm guessing it does, albeit a virtual one
[07:56]<mzsrcj>is that whats causing the problem perhaps?
[07:56]<vyrn-vnzsr>no
[07:56]<vyrn-vnzsr>cat /proc/modules
[07:57]<mzsrcj>vice-versa: returns nothing
[07:57]<vyrn-vnzsr>figured it would
[07:58]<vyrn-vnzsr>MrSako: iptables -h -m state
[07:59]<mzsrcj>it gives me all this stuff about how to use the command iptables
[07:59]<mzsrcj>its iptables v1.2.11 if that means anything
[08:01]<vyrn-vnzsr>mmm, yeah doesn't do what I thought
[08:28]<vyrn-vnzsr>bah, I was close... iptables -m state -h
[14:34]<-- svgvsdyzgjvr xrs>/dev/null")
[17:09]<zjgvzzvggvjz>hi
[17:09]<drwygn>hola, contraventor.
[17:09]<zjgvzzvggvjz>kernel 2.6.13 support iptables with match string ?
[17:09]<zjgvzzvggvjz>pom
[17:15]<afnxnztnah>maxine, hola ?
[17:15]<drwygn>alexertech: bugger all, i dunno
