ip6tables problem
Shawn O'Shea
shawn at eth0.net
Fri Jan 3 16:17:13 EST 2014
I fired up a Debian wheezy vm. It looks like there is a corresponding
kernel module. When I try your ip6tables command, it works, and autoloads
the necessary kernel modules.
root at debian:~# lsmod | grep LOG
root at debian:~# ip6tables -A INPUT -m limit --limit 3/min --limit-burst 10
-j LOG --log-prefix "[INPUT6]: "
root at debian:~# lsmod | grep LOG
ip6t_LOG 12609 1
ip6_tables 22175 2 ip6table_filter,ip6t_LOG
x_tables 19118 4 ip6_tables,ip6table_filter,xt_limit,ip6t_LOG
The module lives in the matching kernel version module tree, like:
/lib/modules/`uname -r`/kernel/net/ipv6/netfilter/ip6t_LOG.ko
Is that on your system? Have you created a custom compiled kernel that
perhaps does not have the proper option enabled to build it?
-Shawn
On Fri, Jan 3, 2014 at 3:49 PM, Curt Howland <Howland at priss.com> wrote:
> On Fri, Jan 3, 2014 at 3:24 PM, Shawn O'Shea <shawn at eth0.net> wrote:
> > it is /lib/xtables/libipt_LOG.so and part of the iptables Ubuntu
> packages.
> > In a 64-bit CentOS 6 system I have, it's /lib64/xtables/libipt_LOG.so and
> Debian stable,
>
> Sure enough,
>
> /lib/xtables
> # ls -a | grep -i log
> libip6t_LOG.so
> libipt_LOG.so
> libipt_ULOG.so
> libxt_NFLOG.so
>
> So I guess the next question is how to kick ip6tables into using it.
>
> Curt-
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.gnhlug.org/mailman/private/gnhlug-discuss/attachments/20140103/e265eaa7/attachment.html
More information about the gnhlug-discuss
mailing list