[Bastille-linux-discuss] a problem
This tool locks down Linux and UNIX systems.
Brought to you by:
jay
Menu
▾
▴
[Bastille-linux-discuss] a problem
|
From: richard <ric...@bl...> - 2002-01-29 08:33:37
|
Hi bastille gurus,
new problem appeared, for me it was after upgrading Galeon to 1.0.2.
3 snippets off the mandrake cooker list
ist
[root@bastard vmware]# rpm -q iptables Bastille
iptables-1.2.4-2mdk
Bastille-1.2.0-4mdk
[root@bastard vmware]# uname -r
2.4.17-10mdk
[root@bastard vmware]# service bastille-firewall start
iptables: libiptc/libip4tc.c:384: do_check: Assertion
`h->info.valid_hooks == (1 << 0 | 1 << 3)' failed.
/sbin/bastille-netfilter: line 578: 28410 Abandon (core
dumped)
${IPTABLES} -t mangle -F PREROUTING
Enabling Mandrake Internet Connection sharing
If you would like to use Bastille's masquerading
support instead, edit /etc/Bastille/bastille-firewall.cfg
(especially the IP_MASQ_NETWORK setting) and run
/etc/rc.d/init.d/bastille-firewall start
to use Bastille's masquerading/connection sharing rules.
WARNING: to allow the caching DNS server in Mandrake's
Internet Connection Sharing system to work, we are
adding DNS to the list of public UDP and TCP services
Setting up IP spoofing protection... done.
Allowing traffic from trusted interfaces... done.
Setting up chains for public/internal interface traffic... done.
Setting up general rules... done.
Setting up outbound rules... done.
2nd
in /var/log/messages
18:18:57 himling rc: starting iptables: succeeded
18:18:57 himling bastille-firewall: iptables:
libiptc/libip4tc.c:384: do_check: Assertion `h->info.valid_hooks == (1
<<
0 | 1 << 3)' failed.
18:18:57 himling bastille-firewall: /sbin/bastille-netfilter: line
578:
718 Aborted ${IPTABLES} -t mangle -F PREROUTING
18:18:57 himling bastille-firewall: Setting up IP spoofing
protection...
3rd was mine
identical problem
all the same kernel version, and with mandrake 8.2 beta out now...
any ideas on a fix
TIA richard
|