[Firehol-support] Errors when running firehol
Jason Miller
jason at milr.com
Fri Jan 23 23:26:16 GMT 2015
Hi Phil,
On 22:58 Fri 23 Jan , Phil Whineray wrote:
> Hi Jason
>
> On Fri, Jan 23, 2015 at 02:09:44PM -0800, Jason Miller wrote:
> > I got a lot of errors the first time I tried running firehol 2.0:
> >
> >
> > iptables: No chain/target/match by that name.
>
> Almost certainly your system does not have various iptables modules
> available to load.
This is what I thought initially too...
>
> What kind of system / distribution are you running? Are you using a
> distribution kernel or is it one you've built yourself?
I'm on gentoo, I built my kernel itself; I've got nearly every CONFIG_NF
option turned on though; do I need a newer kernel? I'm on 3.12.13:
CONFIG_NF_CONNTRACK=y
CONFIG_NF_CONNTRACK_SECMARK=y
CONFIG_NF_CONNTRACK_PROCFS=y
CONFIG_NF_CONNTRACK_FTP=y
CONFIG_NF_CONNTRACK_IRC=y
# CONFIG_NF_CONNTRACK_NETBIOS_NS is not set
CONFIG_NF_CONNTRACK_SIP=y
CONFIG_NF_CT_NETLINK=y
CONFIG_NF_NAT=m
CONFIG_NF_NAT_NEEDED=y
# CONFIG_NF_NAT_AMANDA is not set
CONFIG_NF_NAT_FTP=m
CONFIG_NF_NAT_IRC=m
CONFIG_NF_NAT_SIP=m
# CONFIG_NF_NAT_TFTP is not set
CONFIG_NF_DEFRAG_IPV4=y
CONFIG_NF_CONNTRACK_IPV4=y
CONFIG_NF_CONNTRACK_PROC_COMPAT=y
CONFIG_NF_NAT_IPV4=m
# CONFIG_NF_NAT_PPTP is not set
# CONFIG_NF_NAT_H323 is not set
CONFIG_NF_DEFRAG_IPV6=y
CONFIG_NF_CONNTRACK_IPV6=y
More information about the Firehol-support
mailing list