* layer7-filter with iptables problem
@ 2004-02-02 7:17 ` hare ram
0 siblings, 0 replies; 9+ messages in thread
From: hare ram @ 2004-02-02 7:05 UTC (permalink / raw)
To: lartc; +Cc: netfilter
Hi
iam running FEDORA,
i have installed Source of iptable 1.2.9 with the patch layer7-iptables
patch done with out any errors
and i applied patch in kernel to the layer 7 patch
and i have select the required option by doing
make menyconfig
done
make dep
make bzImage
make modules
make modules_install
make install
and rebooted with customer kernel
when i type
iptables -t mangle -A POSTROUTING -m layer7 --l7proto http -j
MARK --set-mark 1
iptables v1.2.9: Couldn't load match
`layer7':/usr/local/lib/iptables/libipt_layer7.so: cannot open shared object
file: No such file or directory
when i try to do manual compile, iam getting this error
cc -O2 -Wall -Wunused -I/usr/src/linux-2.4.22-1.2115.nptl/include -Iinclude/
-DIPTABLES_VERSION=\"1.2.9\" -fPIC -o extensions/libipt_layer7_sh.o -c
extensions/libipt_layer7.c
extensions/libipt_layer7.c:21:45: linux/netfilter_ipv4/ipt_layer7.h: No such
file or directory
extensions/libipt_layer7.c:52: warning: `struct ipt_layer7_info' declared
inside parameter list
extensions/libipt_layer7.c:52: warning: its scope is only this definition or
declaration, which is probably not what you want
extensions/libipt_layer7.c: In function `parse_protocol_file':
extensions/libipt_layer7.c:84: error: `MAX_PROTOCOL_LEN' undeclared (first
use in this function)
extensions/libipt_layer7.c:84: error: (Each undeclared identifier is
reported only once
extensions/libipt_layer7.c:84: error: for each function it appears in.)
extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:93: error: `MAX_PATTERN_LEN' undeclared (first
use in this function)
extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c: At top level:
extensions/libipt_layer7.c:219: warning: `struct ipt_layer7_info' declared
inside parameter list
extensions/libipt_layer7.c: In function `parse_layer7_protocol':
extensions/libipt_layer7.c:246: warning: passing arg 3 of
`parse_protocol_file' from incompatible pointer type
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:264: error: `MAX_PATTERN_LEN' undeclared (first
use in this function)
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c: In function `parse':
extensions/libipt_layer7.c:278: warning: passing arg 2 of
`parse_layer7_protocol' from incompatible pointer type
extensions/libipt_layer7.c:280: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c: In function `print':
extensions/libipt_layer7.c:325: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:326: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c: In function `save':
extensions/libipt_layer7.c:334: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:334: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c: At top level:
extensions/libipt_layer7.c:340: error: invalid application of `sizeof' to an
incomplete type
extensions/libipt_layer7.c:341: error: invalid application of `sizeof' to an
incomplete type
any help will be apprciate
hare
^ permalink raw reply [flat|nested] 9+ messages in thread
* [LARTC] layer7-filter with iptables problem
@ 2004-02-02 7:17 ` hare ram
0 siblings, 0 replies; 9+ messages in thread
From: hare ram @ 2004-02-02 7:17 UTC (permalink / raw)
To: lartc; +Cc: netfilter
Hi
iam running FEDORA,
i have installed Source of iptable 1.2.9 with the patch layer7-iptables
patch done with out any errors
and i applied patch in kernel to the layer 7 patch
and i have select the required option by doing
make menyconfig
done
make dep
make bzImage
make modules
make modules_install
make install
and rebooted with customer kernel
when i type
iptables -t mangle -A POSTROUTING -m layer7 --l7proto http -j
MARK --set-mark 1
iptables v1.2.9: Couldn't load match
`layer7':/usr/local/lib/iptables/libipt_layer7.so: cannot open shared object
file: No such file or directory
when i try to do manual compile, iam getting this error
cc -O2 -Wall -Wunused -I/usr/src/linux-2.4.22-1.2115.nptl/include -Iinclude/
-DIPTABLES_VERSION=\"1.2.9\" -fPIC -o extensions/libipt_layer7_sh.o -c
extensions/libipt_layer7.c
extensions/libipt_layer7.c:21:45: linux/netfilter_ipv4/ipt_layer7.h: No such
file or directory
extensions/libipt_layer7.c:52: warning: `struct ipt_layer7_info' declared
inside parameter list
extensions/libipt_layer7.c:52: warning: its scope is only this definition or
declaration, which is probably not what you want
extensions/libipt_layer7.c: In function `parse_protocol_file':
extensions/libipt_layer7.c:84: error: `MAX_PROTOCOL_LEN' undeclared (first
use in this function)
extensions/libipt_layer7.c:84: error: (Each undeclared identifier is
reported only once
extensions/libipt_layer7.c:84: error: for each function it appears in.)
extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:93: error: `MAX_PATTERN_LEN' undeclared (first
use in this function)
extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c: At top level:
extensions/libipt_layer7.c:219: warning: `struct ipt_layer7_info' declared
inside parameter list
extensions/libipt_layer7.c: In function `parse_layer7_protocol':
extensions/libipt_layer7.c:246: warning: passing arg 3 of
`parse_protocol_file' from incompatible pointer type
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:264: error: `MAX_PATTERN_LEN' undeclared (first
use in this function)
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c: In function `parse':
extensions/libipt_layer7.c:278: warning: passing arg 2 of
`parse_layer7_protocol' from incompatible pointer type
extensions/libipt_layer7.c:280: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c: In function `print':
extensions/libipt_layer7.c:325: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:326: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c: In function `save':
extensions/libipt_layer7.c:334: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c:334: error: dereferencing pointer to incomplete
type
extensions/libipt_layer7.c: At top level:
extensions/libipt_layer7.c:340: error: invalid application of `sizeof' to an
incomplete type
extensions/libipt_layer7.c:341: error: invalid application of `sizeof' to an
incomplete type
any help will be apprciate
hare
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: [LARTC] layer7-filter with iptables problem
2004-02-02 7:17 ` [LARTC] " hare ram
(?)
@ 2004-02-02 8:04 ` hare ram
-1 siblings, 0 replies; 9+ messages in thread
From: hare ram @ 2004-02-02 8:04 UTC (permalink / raw)
To: lartc; +Cc: netfilter
Hello
sorry continuation to the last mail
when make menuconfig
iam not able to see this options tooo
"Layer 7 match support" and "Child Level match support".
but i followed the proceedures mentioned in the docs
but i could not find this option
where did i went wrong.. iam not sure
some one guide me
hare
----- Original Message -----
From: "hare ram" <hareram@sol.net.in>
To: <lartc@mailman.ds9a.nl>
Cc: <netfilter@lists.samba.org>
Sent: Monday, February 02, 2004 12:35 PM
Subject: [LARTC] layer7-filter with iptables problem
> Hi
>
> iam running FEDORA,
>
> i have installed Source of iptable 1.2.9 with the patch layer7-iptables
> patch done with out any errors
>
> and i applied patch in kernel to the layer 7 patch
>
> and i have select the required option by doing
>
> make menyconfig
> done
>
> make dep
> make bzImage
> make modules
> make modules_install
> make install
>
> and rebooted with customer kernel
>
> when i type
>
> iptables -t mangle -A POSTROUTING -m layer7 --l7proto http -j
> MARK --set-mark 1
> iptables v1.2.9: Couldn't load match
> `layer7':/usr/local/lib/iptables/libipt_layer7.so: cannot open shared
object
> file: No such file or directory
>
>
> when i try to do manual compile, iam getting this error
>
>
cc -O2 -Wall -Wunused -I/usr/src/linux-2.4.22-1.2115.nptl/include -Iinclude/
> -DIPTABLES_VERSION=\"1.2.9\" -fPIC -o extensions/libipt_layer7_sh.o -c
> extensions/libipt_layer7.c
>
>
> extensions/libipt_layer7.c:21:45: linux/netfilter_ipv4/ipt_layer7.h: No
such
> file or directory
> extensions/libipt_layer7.c:52: warning: `struct ipt_layer7_info' declared
> inside parameter list
> extensions/libipt_layer7.c:52: warning: its scope is only this definition
or
> declaration, which is probably not what you want
> extensions/libipt_layer7.c: In function `parse_protocol_file':
> extensions/libipt_layer7.c:84: error: `MAX_PROTOCOL_LEN' undeclared (first
> use in this function)
> extensions/libipt_layer7.c:84: error: (Each undeclared identifier is
> reported only once
> extensions/libipt_layer7.c:84: error: for each function it appears in.)
> extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:93: error: `MAX_PATTERN_LEN' undeclared (first
> use in this function)
> extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c: At top level:
> extensions/libipt_layer7.c:219: warning: `struct ipt_layer7_info' declared
> inside parameter list
> extensions/libipt_layer7.c: In function `parse_layer7_protocol':
> extensions/libipt_layer7.c:246: warning: passing arg 3 of
> `parse_protocol_file' from incompatible pointer type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:264: error: `MAX_PATTERN_LEN' undeclared (first
> use in this function)
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c: In function `parse':
> extensions/libipt_layer7.c:278: warning: passing arg 2 of
> `parse_layer7_protocol' from incompatible pointer type
> extensions/libipt_layer7.c:280: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c: In function `print':
> extensions/libipt_layer7.c:325: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:326: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c: In function `save':
> extensions/libipt_layer7.c:334: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:334: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c: At top level:
> extensions/libipt_layer7.c:340: error: invalid application of `sizeof' to
an
> incomplete type
> extensions/libipt_layer7.c:341: error: invalid application of `sizeof' to
an
> incomplete type
>
>
> any help will be apprciate
>
> hare
>
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
>
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: [LARTC] layer7-filter with iptables problem
2004-02-02 7:17 ` [LARTC] " hare ram
(?)
(?)
@ 2004-02-02 8:16 ` hare ram
2004-02-02 10:35 ` --reject-with icmp-admin-prohibited Stephen Satchell
-1 siblings, 1 reply; 9+ messages in thread
From: hare ram @ 2004-02-02 8:16 UTC (permalink / raw)
To: lartc
Hello
sorry continuation to the last mail
when make menuconfig
iam not able to see this options tooo
"Layer 7 match support" and "Child Level match support".
but i followed the proceedures mentioned in the docs
but i could not find this option
where did i went wrong.. iam not sure
some one guide me
hare
----- Original Message -----
From: "hare ram" <hareram@sol.net.in>
To: <lartc@mailman.ds9a.nl>
Cc: <netfilter@lists.samba.org>
Sent: Monday, February 02, 2004 12:35 PM
Subject: [LARTC] layer7-filter with iptables problem
> Hi
>
> iam running FEDORA,
>
> i have installed Source of iptable 1.2.9 with the patch layer7-iptables
> patch done with out any errors
>
> and i applied patch in kernel to the layer 7 patch
>
> and i have select the required option by doing
>
> make menyconfig
> done
>
> make dep
> make bzImage
> make modules
> make modules_install
> make install
>
> and rebooted with customer kernel
>
> when i type
>
> iptables -t mangle -A POSTROUTING -m layer7 --l7proto http -j
> MARK --set-mark 1
> iptables v1.2.9: Couldn't load match
> `layer7':/usr/local/lib/iptables/libipt_layer7.so: cannot open shared
object
> file: No such file or directory
>
>
> when i try to do manual compile, iam getting this error
>
>
cc -O2 -Wall -Wunused -I/usr/src/linux-2.4.22-1.2115.nptl/include -Iinclude/
> -DIPTABLES_VERSION=\"1.2.9\" -fPIC -o extensions/libipt_layer7_sh.o -c
> extensions/libipt_layer7.c
>
>
> extensions/libipt_layer7.c:21:45: linux/netfilter_ipv4/ipt_layer7.h: No
such
> file or directory
> extensions/libipt_layer7.c:52: warning: `struct ipt_layer7_info' declared
> inside parameter list
> extensions/libipt_layer7.c:52: warning: its scope is only this definition
or
> declaration, which is probably not what you want
> extensions/libipt_layer7.c: In function `parse_protocol_file':
> extensions/libipt_layer7.c:84: error: `MAX_PROTOCOL_LEN' undeclared (first
> use in this function)
> extensions/libipt_layer7.c:84: error: (Each undeclared identifier is
> reported only once
> extensions/libipt_layer7.c:84: error: for each function it appears in.)
> extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:87: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:93: error: `MAX_PATTERN_LEN' undeclared (first
> use in this function)
> extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:95: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c: At top level:
> extensions/libipt_layer7.c:219: warning: `struct ipt_layer7_info' declared
> inside parameter list
> extensions/libipt_layer7.c: In function `parse_layer7_protocol':
> extensions/libipt_layer7.c:246: warning: passing arg 3 of
> `parse_protocol_file' from incompatible pointer type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:264: error: `MAX_PATTERN_LEN' undeclared (first
> use in this function)
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c: In function `parse':
> extensions/libipt_layer7.c:278: warning: passing arg 2 of
> `parse_layer7_protocol' from incompatible pointer type
> extensions/libipt_layer7.c:280: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c: In function `print':
> extensions/libipt_layer7.c:325: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:326: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c: In function `save':
> extensions/libipt_layer7.c:334: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c:334: error: dereferencing pointer to incomplete
> type
> extensions/libipt_layer7.c: At top level:
> extensions/libipt_layer7.c:340: error: invalid application of `sizeof' to
an
> incomplete type
> extensions/libipt_layer7.c:341: error: invalid application of `sizeof' to
an
> incomplete type
>
>
> any help will be apprciate
>
> hare
>
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
>
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
^ permalink raw reply [flat|nested] 9+ messages in thread
* --reject-with icmp-admin-prohibited
2004-02-02 8:16 ` hare ram
@ 2004-02-02 10:35 ` Stephen Satchell
2004-02-02 15:57 ` Maciej Soltysiak
0 siblings, 1 reply; 9+ messages in thread
From: Stephen Satchell @ 2004-02-02 10:35 UTC (permalink / raw)
To: netfilter
Hi.
This is a stupid question. I know it is. I'm looking for the syntax to
use with -j REJECT in which I can return a ICMP Type 3 Code 13, which is
defined in _TCP/IP Illustrated Vol 1_ as "communications
administratively prohibited by filtering." The man page is no help.
The /sbin/iptables -p icmp --help lists only the codes used for matching
packets, not generating them. I've tried every variation of 3/13 I
could think of.
I finally looked in the source and found "icmp-admin-prohibited" but
when I tried it with 1.2.7 it didn't work.
What's the secret code to get -j REJECT --reject-with
icmp-admin-prohibited to work with 1.2.7?
(signed) puzzled
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: --reject-with icmp-admin-prohibited
2004-02-02 10:35 ` --reject-with icmp-admin-prohibited Stephen Satchell
@ 2004-02-02 15:57 ` Maciej Soltysiak
0 siblings, 0 replies; 9+ messages in thread
From: Maciej Soltysiak @ 2004-02-02 15:57 UTC (permalink / raw)
To: Iptables Mailing List
Hi,
> I finally looked in the source and found "icmp-admin-prohibited" but
> when I tried it with 1.2.7 it didn't work.
In order to have it working you need, iptables-1.2.8+ and kernel
2.4.22+ (i think it was around 2.4.21 when it was accepted)
These two contain the correct code for this option to work.
You are encouraged to use the latest iptables package and 2.4.22+
kernel, because with previous kernels this would not work,
using this option would result in a plain DROP instead of sending icmp.
Please use the most up2date sources. If you do not want to change
for some reason your 1.2.7 code, you would still need to patch your
kernel code to update the ipt_REJECT module, and patch your
iptables-1.2.7 sources to update libipt_REJECT userspace module.
So you'd be better of using 1.2.9 and 2.4.22+
No patching with those two running.
Regards,
Maciej
(the author of admin-prohib patch)
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: [LARTC] layer7-filter with iptables problem
2004-02-02 7:17 ` [LARTC] " hare ram
` (2 preceding siblings ...)
(?)
@ 2004-02-03 3:08 ` Nabil SEFRIOUI
2004-02-03 6:40 ` hare ram
-1 siblings, 1 reply; 9+ messages in thread
From: Nabil SEFRIOUI @ 2004-02-03 3:08 UTC (permalink / raw)
To: hare ram, lartc; +Cc: netfilter
try patching and installing kernel before iptables
Le Lundi 02 Février 2004 07:05, hare ram a écrit :
> Hi
>
> iam running FEDORA,
>
> i have installed Source of iptable 1.2.9 with the patch
> layer7-iptables patch done with out any errors
>
> and i applied patch in kernel to the layer 7 patch
>
> and i have select the required option by doing
>
> make menyconfig
> done
>
> make dep
> make bzImage
> make modules
> make modules_install
> make install
>
> and rebooted with customer kernel
>
> when i type
>
> iptables -t mangle -A POSTROUTING -m layer7 --l7proto http -j
> MARK --set-mark 1
> iptables v1.2.9: Couldn't load match
> `layer7':/usr/local/lib/iptables/libipt_layer7.so: cannot open shared
> object file: No such file or directory
>
>
> when i try to do manual compile, iam getting this error
>
> cc -O2 -Wall -Wunused -I/usr/src/linux-2.4.22-1.2115.nptl/include
> -Iinclude/ -DIPTABLES_VERSION=\"1.2.9\" -fPIC -o
> extensions/libipt_layer7_sh.o -c extensions/libipt_layer7.c
>
>
> extensions/libipt_layer7.c:21:45: linux/netfilter_ipv4/ipt_layer7.h:
> No such file or directory
> extensions/libipt_layer7.c:52: warning: `struct ipt_layer7_info'
> declared inside parameter list
> extensions/libipt_layer7.c:52: warning: its scope is only this
> definition or declaration, which is probably not what you want
> extensions/libipt_layer7.c: In function `parse_protocol_file':
> extensions/libipt_layer7.c:84: error: `MAX_PROTOCOL_LEN' undeclared
> (first use in this function)
> extensions/libipt_layer7.c:84: error: (Each undeclared identifier is
> reported only once
> extensions/libipt_layer7.c:84: error: for each function it appears
> in.) extensions/libipt_layer7.c:87: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:87: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:87: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:93: error: `MAX_PATTERN_LEN' undeclared
> (first use in this function)
> extensions/libipt_layer7.c:95: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:95: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:95: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: At top level:
> extensions/libipt_layer7.c:219: warning: `struct ipt_layer7_info'
> declared inside parameter list
> extensions/libipt_layer7.c: In function `parse_layer7_protocol':
> extensions/libipt_layer7.c:246: warning: passing arg 3 of
> `parse_protocol_file' from incompatible pointer type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: `MAX_PATTERN_LEN' undeclared
> (first use in this function)
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: In function `parse':
> extensions/libipt_layer7.c:278: warning: passing arg 2 of
> `parse_layer7_protocol' from incompatible pointer type
> extensions/libipt_layer7.c:280: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: In function `print':
> extensions/libipt_layer7.c:325: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:326: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: In function `save':
> extensions/libipt_layer7.c:334: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:334: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: At top level:
> extensions/libipt_layer7.c:340: error: invalid application of
> `sizeof' to an incomplete type
> extensions/libipt_layer7.c:341: error: invalid application of
> `sizeof' to an incomplete type
>
>
> any help will be apprciate
>
> hare
>
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO:
> http://lartc.org/
--
__________________________________
Osmium Work - Ingénierie Open Source
http://www.osmium-work.com/
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: [LARTC] layer7-filter with iptables problem
2004-02-03 3:08 ` [LARTC] layer7-filter with iptables problem Nabil SEFRIOUI
@ 2004-02-03 6:40 ` hare ram
0 siblings, 0 replies; 9+ messages in thread
From: hare ram @ 2004-02-03 6:28 UTC (permalink / raw)
To: Nabil SEFRIOUI, lartc; +Cc: netfilter
Hi
thanks for the quick reply
iam using the following things
iptables-1.2.9-layer7-0.4.1.patch
layer7-kernel2.4patch-qos-0.4.1b
i did the proceedure
[root@pdn linux-2.4.22-1.2115.nptl]# patch -p1 <
/root/update/layer7-kernel2.4patch-qos-0.4.1b
patching file Documentation/Configure.help
Hunk #1 succeeded at 10626 (offset 283 lines).
patching file include/linux/netfilter_ipv4/ip_conntrack.h
Hunk #1 succeeded at 190 (offset 1 line).
patching file include/linux/pkt_cls.h
patching file net/ipv4/netfilter/Config.in
patching file net/sched/Config.in
patching file net/sched/Makefile
patching file net/sched/cls_api.c
patching file net/sched/cls_layer7.c
patching file net/sched/regexp/regerror.c
patching file net/sched/regexp/regexp.c
patching file net/sched/regexp/regexp.h
patching file net/sched/regexp/regmagic.h
patching file net/sched/regexp/regsub.c
[root@pdn linux-2.4.22-1.2115.nptl]#
[root@pdn linux-2.4.22-1.2115.nptl]#
iptables patching
[root@pdn iptables-1.2.9]# patch -p1 <
../iptables-1.2.9-layer7-0.4.1.patch.1
patching file extensions/.childlevel-test
patching file extensions/.layer7-test
patching file extensions/libipt_childlevel.c
patching file extensions/libipt_layer7.c
patching file iptables.8
chmod +x extensions/.layer7-test extensions/.childlevel-test
make KERNEL_DIR=/usr/src/linux-2.4.22-1.2115.nptl
make install KERNEL_DIR=/usr/src/linux-2.4.22-1.2115.nptl
iam not able to find the ipt_layer.h file
and iam not able to see the menus in when i make .. make menuconfig
hare
----- Original Message -----
From: "Nabil SEFRIOUI" <admin@osmium-work.com>
To: "hare ram" <hareram@sol.net.in>; <lartc@mailman.ds9a.nl>
Cc: <netfilter@lists.samba.org>
Sent: Tuesday, February 03, 2004 8:38 AM
Subject: Re: [LARTC] layer7-filter with iptables problem
try patching and installing kernel before iptables
Le Lundi 02 Février 2004 07:05, hare ram a écrit :
> Hi
>
> iam running FEDORA,
>
> i have installed Source of iptable 1.2.9 with the patch
> layer7-iptables patch done with out any errors
>
> and i applied patch in kernel to the layer 7 patch
>
> and i have select the required option by doing
>
> make menyconfig
> done
>
> make dep
> make bzImage
> make modules
> make modules_install
> make install
>
> and rebooted with customer kernel
>
> when i type
>
> iptables -t mangle -A POSTROUTING -m layer7 --l7proto http -j
> MARK --set-mark 1
> iptables v1.2.9: Couldn't load match
> `layer7':/usr/local/lib/iptables/libipt_layer7.so: cannot open shared
> object file: No such file or directory
>
>
> when i try to do manual compile, iam getting this error
>
> cc -O2 -Wall -Wunused -I/usr/src/linux-2.4.22-1.2115.nptl/include
> -Iinclude/ -DIPTABLES_VERSION=\"1.2.9\" -fPIC -o
> extensions/libipt_layer7_sh.o -c extensions/libipt_layer7.c
>
>
> extensions/libipt_layer7.c:21:45: linux/netfilter_ipv4/ipt_layer7.h:
> No such file or directory
> extensions/libipt_layer7.c:52: warning: `struct ipt_layer7_info'
> declared inside parameter list
> extensions/libipt_layer7.c:52: warning: its scope is only this
> definition or declaration, which is probably not what you want
> extensions/libipt_layer7.c: In function `parse_protocol_file':
> extensions/libipt_layer7.c:84: error: `MAX_PROTOCOL_LEN' undeclared
> (first use in this function)
> extensions/libipt_layer7.c:84: error: (Each undeclared identifier is
> reported only once
> extensions/libipt_layer7.c:84: error: for each function it appears
> in.) extensions/libipt_layer7.c:87: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:87: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:87: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:93: error: `MAX_PATTERN_LEN' undeclared
> (first use in this function)
> extensions/libipt_layer7.c:95: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:95: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:95: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: At top level:
> extensions/libipt_layer7.c:219: warning: `struct ipt_layer7_info'
> declared inside parameter list
> extensions/libipt_layer7.c: In function `parse_layer7_protocol':
> extensions/libipt_layer7.c:246: warning: passing arg 3 of
> `parse_protocol_file' from incompatible pointer type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: `MAX_PATTERN_LEN' undeclared
> (first use in this function)
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: In function `parse':
> extensions/libipt_layer7.c:278: warning: passing arg 2 of
> `parse_layer7_protocol' from incompatible pointer type
> extensions/libipt_layer7.c:280: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: In function `print':
> extensions/libipt_layer7.c:325: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:326: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: In function `save':
> extensions/libipt_layer7.c:334: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:334: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: At top level:
> extensions/libipt_layer7.c:340: error: invalid application of
> `sizeof' to an incomplete type
> extensions/libipt_layer7.c:341: error: invalid application of
> `sizeof' to an incomplete type
>
>
> any help will be apprciate
>
> hare
>
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO:
> http://lartc.org/
--
__________________________________
Osmium Work - Ingénierie Open Source
http://www.osmium-work.com/
^ permalink raw reply [flat|nested] 9+ messages in thread
* Re: [LARTC] layer7-filter with iptables problem
@ 2004-02-03 6:40 ` hare ram
0 siblings, 0 replies; 9+ messages in thread
From: hare ram @ 2004-02-03 6:40 UTC (permalink / raw)
To: Nabil SEFRIOUI, lartc; +Cc: netfilter
Hi
thanks for the quick reply
iam using the following things
iptables-1.2.9-layer7-0.4.1.patch
layer7-kernel2.4patch-qos-0.4.1b
i did the proceedure
[root@pdn linux-2.4.22-1.2115.nptl]# patch -p1 <
/root/update/layer7-kernel2.4patch-qos-0.4.1b
patching file Documentation/Configure.help
Hunk #1 succeeded at 10626 (offset 283 lines).
patching file include/linux/netfilter_ipv4/ip_conntrack.h
Hunk #1 succeeded at 190 (offset 1 line).
patching file include/linux/pkt_cls.h
patching file net/ipv4/netfilter/Config.in
patching file net/sched/Config.in
patching file net/sched/Makefile
patching file net/sched/cls_api.c
patching file net/sched/cls_layer7.c
patching file net/sched/regexp/regerror.c
patching file net/sched/regexp/regexp.c
patching file net/sched/regexp/regexp.h
patching file net/sched/regexp/regmagic.h
patching file net/sched/regexp/regsub.c
[root@pdn linux-2.4.22-1.2115.nptl]#
[root@pdn linux-2.4.22-1.2115.nptl]#
iptables patching
[root@pdn iptables-1.2.9]# patch -p1 <
../iptables-1.2.9-layer7-0.4.1.patch.1
patching file extensions/.childlevel-test
patching file extensions/.layer7-test
patching file extensions/libipt_childlevel.c
patching file extensions/libipt_layer7.c
patching file iptables.8
chmod +x extensions/.layer7-test extensions/.childlevel-test
make KERNEL_DIR=/usr/src/linux-2.4.22-1.2115.nptl
make install KERNEL_DIR=/usr/src/linux-2.4.22-1.2115.nptl
iam not able to find the ipt_layer.h file
and iam not able to see the menus in when i make .. make menuconfig
hare
----- Original Message -----
From: "Nabil SEFRIOUI" <admin@osmium-work.com>
To: "hare ram" <hareram@sol.net.in>; <lartc@mailman.ds9a.nl>
Cc: <netfilter@lists.samba.org>
Sent: Tuesday, February 03, 2004 8:38 AM
Subject: Re: [LARTC] layer7-filter with iptables problem
try patching and installing kernel before iptables
Le Lundi 02 Février 2004 07:05, hare ram a écrit :
> Hi
>
> iam running FEDORA,
>
> i have installed Source of iptable 1.2.9 with the patch
> layer7-iptables patch done with out any errors
>
> and i applied patch in kernel to the layer 7 patch
>
> and i have select the required option by doing
>
> make menyconfig
> done
>
> make dep
> make bzImage
> make modules
> make modules_install
> make install
>
> and rebooted with customer kernel
>
> when i type
>
> iptables -t mangle -A POSTROUTING -m layer7 --l7proto http -j
> MARK --set-mark 1
> iptables v1.2.9: Couldn't load match
> `layer7':/usr/local/lib/iptables/libipt_layer7.so: cannot open shared
> object file: No such file or directory
>
>
> when i try to do manual compile, iam getting this error
>
> cc -O2 -Wall -Wunused -I/usr/src/linux-2.4.22-1.2115.nptl/include
> -Iinclude/ -DIPTABLES_VERSION=\"1.2.9\" -fPIC -o
> extensions/libipt_layer7_sh.o -c extensions/libipt_layer7.c
>
>
> extensions/libipt_layer7.c:21:45: linux/netfilter_ipv4/ipt_layer7.h:
> No such file or directory
> extensions/libipt_layer7.c:52: warning: `struct ipt_layer7_info'
> declared inside parameter list
> extensions/libipt_layer7.c:52: warning: its scope is only this
> definition or declaration, which is probably not what you want
> extensions/libipt_layer7.c: In function `parse_protocol_file':
> extensions/libipt_layer7.c:84: error: `MAX_PROTOCOL_LEN' undeclared
> (first use in this function)
> extensions/libipt_layer7.c:84: error: (Each undeclared identifier is
> reported only once
> extensions/libipt_layer7.c:84: error: for each function it appears
> in.) extensions/libipt_layer7.c:87: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:87: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:87: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:93: error: `MAX_PATTERN_LEN' undeclared
> (first use in this function)
> extensions/libipt_layer7.c:95: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:95: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:95: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: At top level:
> extensions/libipt_layer7.c:219: warning: `struct ipt_layer7_info'
> declared inside parameter list
> extensions/libipt_layer7.c: In function `parse_layer7_protocol':
> extensions/libipt_layer7.c:246: warning: passing arg 3 of
> `parse_protocol_file' from incompatible pointer type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: `MAX_PATTERN_LEN' undeclared
> (first use in this function)
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:264: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: In function `parse':
> extensions/libipt_layer7.c:278: warning: passing arg 2 of
> `parse_layer7_protocol' from incompatible pointer type
> extensions/libipt_layer7.c:280: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: In function `print':
> extensions/libipt_layer7.c:325: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:326: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: In function `save':
> extensions/libipt_layer7.c:334: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c:334: error: dereferencing pointer to
> incomplete type
> extensions/libipt_layer7.c: At top level:
> extensions/libipt_layer7.c:340: error: invalid application of
> `sizeof' to an incomplete type
> extensions/libipt_layer7.c:341: error: invalid application of
> `sizeof' to an incomplete type
>
>
> any help will be apprciate
>
> hare
>
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO:
> http://lartc.org/
--
__________________________________
Osmium Work - Ingénierie Open Source
http://www.osmium-work.com/
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
^ permalink raw reply [flat|nested] 9+ messages in thread
end of thread, other threads:[~2004-02-03 6:40 UTC | newest]
Thread overview: 9+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2004-02-02 7:05 layer7-filter with iptables problem hare ram
2004-02-02 7:17 ` [LARTC] " hare ram
2004-02-02 8:04 ` hare ram
2004-02-02 8:16 ` hare ram
2004-02-02 10:35 ` --reject-with icmp-admin-prohibited Stephen Satchell
2004-02-02 15:57 ` Maciej Soltysiak
2004-02-03 3:08 ` [LARTC] layer7-filter with iptables problem Nabil SEFRIOUI
2004-02-03 6:28 ` hare ram
2004-02-03 6:40 ` hare ram
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.