Re: [bwm-tools-tech] firewall rules problems
Brought to you by:
nkukard
Menu
▾
▴
Re: [bwm-tools-tech] firewall rules problems
|
From: Kobe L. <ko...@pu...> - 2004-03-22 21:57:37
|
This is in fact an easy one ;-) You don't have the ip_queue module loaded in your kernel (or not compiled if you're not running the stock RH kernel). You can check the loaded modules with 'lsmod'. A simple 'insmod ip_queue' should do the trick You should place this mod in the section provided for it in the XML config file so bwmd will load it auotmatically on start. Succes Kobe ----- Original Message ----- From: "Alejandro Rios Peña ??" <al...@un...> To: "Kobe Lenjou" <ko...@pu...> Cc: <bwm...@li...> Sent: Monday, March 22, 2004 9:49 PM Subject: Re: [bwm-tools-tech] firewall rules problems > Hi again kobe, > > We did what you said about iptables-restore, and we think it worked :) > (see * bellow), but now we're having problems trying to run bwmd (see ** > bellow). > > *This is our iptables status now: > > [root@kerrigan root]# service iptables status > Table: nat > Chain PREROUTING (policy ACCEPT) > target prot opt source destination > > Chain POSTROUTING (policy ACCEPT) > target prot opt source destination > > Chain OUTPUT (policy ACCEPT) > target prot opt source destination > > Table: filter > Chain INPUT (policy ACCEPT) > target prot opt source destination > > Chain FORWARD (policy ACCEPT) > target prot opt source destination > > Chain OUTPUT (policy ACCEPT) > target prot opt source destination > > Chain bwmd (0 references) > target prot opt source destination > QUEUE all -- anywhere anywhere MARK match > !0x0 > > Table: mangle > Chain PREROUTING (policy ACCEPT) > target prot opt source destination > > Chain INPUT (policy ACCEPT) > target prot opt source destination > > Chain FORWARD (policy ACCEPT) > target prot opt source destination > MARK tcp -- macondo.unicauca.edu.co !172.16.0.0/16 MARK set > 0x3e9 > MARK udp -- macondo.unicauca.edu.co !172.16.0.0/16 MARK set > 0x3e9 > MARK tcp -- anywhere anywhere MARK set > 0x3f0 > MARK udp -- anywhere anywhere MARK set > 0x3f0 > > Chain OUTPUT (policy ACCEPT) > target prot opt source destination > > Chain POSTROUTING (policy ACCEPT) > target prot opt source destination > > > *And this is the problem we're having with bwmd: > > [root@kerrigan root]# bwmd --foreground > BWM Daemon v0.1.8 - Copyright (c) 2003 Linux Based Systems Design > > BWMD: Loaded 3 flows and 2 queues > BWMD: Found 0 modules to load > IPQ runner started... > Failed to set IPQ mode > passer: Failed to send netlink message: Connection refused > Failed to get IPQ handle > Flow runner started... > Stat thread started... > > Thanks for the help. > > P.D.: Sorry for all these long e-mails. > > > -- > Alejandro Ríos Peña > --------------------------------------------------- > | Estudiante Ing. Electrónica y Telecomunicaciones > | Universidad del Cauca > | Coord. Grupo GNU/Linux Unicauca > | Socio Avatar Ltda. > | Integrante ParqueSoft > | Popayán, Colombia > --------------------------------------------------- > "Quien ha de morir, libere su software a la comunidad" > -- > Alejandro Ríos Peña > --------------------------------------------------- > | Estudiante Ing. Electrónica y Telecomunicaciones > | Universidad del Cauca > | Coord. Grupo GNU/Linux Unicauca > | Socio Avatar Ltda. > | Integrante ParqueSoft > | Popayán, Colombia > --------------------------------------------------- > "Quien ha de morir, libere su software a la comunidad" > > |
