[Firewall] Linux 3.4.2 Kernel - ipt_LOG --> xt_LOG

Adam Young ay-arno at fizhoo.com
Tue Jun 19 23:19:52 CEST 2012


Lonnie,

That did it. Works now with "xt_LOG" in lieu of "xt_log".

Thanks for the help.

AY

---- Original Message ----
From: Lonnie Abelbeck <lists at lonnie.abelbeck.com>
Sent: Tue, 19 Jun 2012 11:54:01 -0500
To: Arno's IPTABLES firewall script <firewall at rocky.eld.leidenuniv.nl>
Cc: 
Subject: Re: [Firewall] Linux 3.4.2 Kernel - ipt_LOG --> xt_LOG


On 6/19/2012 11:54 AM, Lonnie Abelbeck wrote:
> Adam,
>
> I think Arno made a case typo, in the main "arno-iptables-firewall" script, around line #317, replace the two occurrences of "xt_log" with "xt_LOG" and see if that fixes it.
>
> Lonnie
>
>
> On Jun 19, 2012, at 11:44 AM, Adam Young wrote:
>
>> Arno,
>>
>> You are welcome. Here is the output of the "Warning" from the daily build:
>>
>> Arno's Iptables Firewall Script v2.0.1c-DEVEL
>> -------------------------------------------------------------------------------
>> Platform: Linux 3.4.2-linode44 i686
>> Checking/probing Iptables modules:
>> Loaded kernel module ip_tables.
>> Loaded kernel module ip6_tables.
>> Loaded kernel module nf_conntrack.
>> Loaded kernel module nf_conntrack_ipv6.
>> Loaded kernel module nf_conntrack_ftp.
>> Loaded kernel module xt_conntrack.
>> Loaded kernel module xt_limit.
>> Loaded kernel module xt_state.
>> Loaded kernel module xt_multiport.
>> Loaded kernel module iptable_filter.
>> Loaded kernel module ip6table_filter.
>> Loaded kernel module iptable_mangle.
>> Loaded kernel module ip6table_mangle.
>> Loaded kernel module ipt_REJECT.
>> Loaded kernel module ip6t_REJECT.
>> WARNING: Modules "xt_log|ipt_LOG,ip6t_LOG" failed to load. Assuming
>> compiled-in-kernel.
>> Loaded kernel module xt_TCPMSS.
>> Loaded kernel module iptable_nat.
>> Module check done...
>>
>> Not sure if this is harmless. But, posted for your review nonetheless.
>> Other than the warning, it appears to be working as intended.
>>
>> Please let me know if you need anything else. Thanks for the quick response!
>>
>> AY
>>
>> ---- Original Message ----
>> From: Arno van Amersfoort <arnova at rocky.eld.leidenuniv.nl>
>> Sent: Tue, 19 Jun 2012 09:00:19 +0200
>> To: Arno's IPTABLES firewall script <firewall at rocky.eld.leidenuniv.nl>
>> Cc: 
>> Subject: Re: [Firewall] Linux 3.4.2 Kernel - ipt_LOG --> xt_LOG
>>
>>
>> On 6/19/2012 2:00 AM, Arno van Amersfoort wrote:
>>> Dear Adam,
>>>
>>> Thanks for reporting this. The warning is indeed harmless.
>>>
>>> I've fixed it in SVN rev642. A new stable release with this fix should
>>> be released shortly. In the meantime you could give the daily build a go.
>>>
>>> cheers,
>>>
>>> Arno
>>>
>>> On 18-Jun-12 18:39, Adam Young wrote:
>>>> Good day.
>>>>
>>>> First, thank you for the firewall script. I have been using Arno
>>>> IPTABLES Firewall in one capacity or another for several years.
>>>>
>>>> System:
>>>>
>>>> - Ubuntu Server 11.10 on a VPS
>>>> - Just upgraded to 3.4.2 Linux Kernel
>>>> - Arno IP Tables Version:  2.0.0.b-1 (from the standard 11.10
>>>> repository)
>>>>
>>>> Rebooted server and the Arno IPTables Firewall script complained about
>>>> the module "ipt_LOG" not being found:
>>>>
>>>> "WARNING: Module "ipt_LOG" failed to load. Assuming compiled-in-kernel."
>>>>
>>>> Everything is still working fine. The previous kernel I was using
>>>> (3.0.18) didn't complain.
>>>>
>>>> After looking into this issue, it appears the 3.4.2 kernel combines the
>>>> ipt_LOG and ip6_LOG into xt_LOG. The kernel I am using (3.4.2) already
>>>> has the xt_LOG compiled in. See http://kernelnewbies.org/Linux_3.4 for
>>>> information.
>>>>
>>>> It appears the Arno executable tries to "modprobe" the ipt_LOG module
>>>> and it complains. I think the warning is harmless, however, I at least
>>>> wanted to bring it up in case the new combined xt_LOG had any
>>>> ramifications that I am unaware.
>>>>
>>>> Please let me know if you need additional information or if you have any
>>>> questions.
>>>>
>>>> Thanks again.
>>>>
>>>> AY
>>>> _______________________________________________
>>>> Firewall mailing list
>>>> Firewall at rocky.eld.leidenuniv.nl
>>>> http://rocky.eld.leidenuniv.nl/mailman/listinfo/firewall
>>>> Arno's (Linux IPTABLES Firewall) Homepage:
>>>> http://rocky.eld.leidenuniv.nl
>>>>
>>> _______________________________________________
>>> Firewall mailing list
>>> Firewall at rocky.eld.leidenuniv.nl
>>> http://rocky.eld.leidenuniv.nl/mailman/listinfo/firewall
>>> Arno's (Linux IPTABLES Firewall) Homepage:
>>> http://rocky.eld.leidenuniv.nl
>>
>> _______________________________________________
>> Firewall mailing list
>> Firewall at rocky.eld.leidenuniv.nl
>> http://rocky.eld.leidenuniv.nl/mailman/listinfo/firewall
>> Arno's (Linux IPTABLES Firewall) Homepage:
>> http://rocky.eld.leidenuniv.nl
>>
>>
> _______________________________________________
> Firewall mailing list
> Firewall at rocky.eld.leidenuniv.nl
> http://rocky.eld.leidenuniv.nl/mailman/listinfo/firewall
> Arno's (Linux IPTABLES Firewall) Homepage:
> http://rocky.eld.leidenuniv.nl




More information about the Firewall mailing list