Iptables erors

Started by thaihugh, October 21, 2014, 10:41:38 PM

Previous topic - Next topic

thaihugh

Hi
Trying to config Iptables when issuing the command as root i get the following error:

root@a10Lime:/home/olimex# sudo iptables -L
FATAL: Module ip_tables not found.
iptables v1.4.14: can't initialize iptables table `filter': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.

Any help will be appreciated

LubOlimex

Hello there,

I tested it and I can confirm this also happens here.

It seems like the kernel was compiled without all the modules related to iptables. I believe the whole "Network packet filtering framework (Netfilter)" was not included. This means that you would need to recompile the kernel and turn the missing modules on in the menuconfig.

We have published instructions and files required to rebuild everything. The post might be found here: http://olimex.wordpress.com/2014/06/23/a10-olinuxino-lime-debian-build-with-kernel-3-4-90/

When you reach the instructions (at the Google Drive here: https://drive.google.com/file/d/0B-bAEPML8fwla21JNU12RnYxZmM/edit) there is a point where you are using a ready defconfig for the LIME board:

# make ARCH=arm a10lime_defconfig

and then you can edit the configurations with

# make ARCH=arm menuconfig

Once there you should enabled everything in Network packet filtering framework (Netfilter) and IP: Netfilter Configuration. Make sure to expand the lists so that you enable everything.

Networking  ---->
Networking options  ---->
  Network packet filtering framework (Netfilter)--->
   Core Netfilter Configuration ---->
    <ENABLE ALL>
   IP: Netfilter Configuration --->
    <ENABLE ALL>

I've notified the people that maintain the official Linux distributions and hopefully the modules would be properly configured for the next release. Note that we currently have no scheduled release date for new Debian image.

Best regards,
Lub/OLIMEX
Technical support and documentation manager at Olimex

gbrault

Not only Iptables is not working, but you can't open "local" socket udp or tcp. But you can access those socket from the outside... I got this bug while integrating two components communicating over an udp socket... I then tried to get acces to the http server locally with wget and it didn't worket (I can however gain access from the outside to this server...).
Too bad to have to recompile the kernel to get rid of this issue...

Don't you have a patch we could allpy to fix that?

Thanks

A10 with Linux 3.4.90+ on armv7l

gbrault

 ;) I want trough the all exercise successfully (recompiling the kernel) and just copying the appropriate files in the existing SD card works...
But it was not the issue...

The issue was the setup of hosts.allow which was empty and where I added one line
ALL: 127.0.0.1

Took me 2 days of pain but now it works...
;D