* H323 module installing and copiling prob
@ 2003-03-19 11:58 MOUDARIR Mohamed
2003-03-19 19:49 ` Martin
0 siblings, 1 reply; 2+ messages in thread
From: MOUDARIR Mohamed @ 2003-03-19 11:58 UTC (permalink / raw)
To: netfilter
Hi all,
I want to use netmeeting over an iptables firewal version 1.2.3 ( redhat
7.2, kernel 2.4 )
I use this command to update iptables :
# cvs -d :pserver:cvs@pserver.netfilter.org:/cvspublic login
# cvs -d :pserver:cvs@pserver.netfilter.org:/cvspublic co
netfilter/userspace netfilter/patch-o-matic
And to make dependecies :
# cd /usr/src/linux/
# make dep
And cd ton ~/netfilter/patch-o-matic/ :
./runme extra
and # ./runme --batch extra/h323-conntrack-nat.patch
After that, i add H323 module to kernel :# make menuconfig
And compile iptables :
# cd ~/netfilter/userspace/
# make all install
So i obtain this message :
Making dependencies: please wait...
cc -O2 -Wall -Wunused -I/usr/src/linux-2.4.7-10/include -Iinclude/
-DIPTABLES_VERSION=\"1.2.7a\" -fPIC -o extensions/libipt_ah_sh.o -c
extensions/libipt_ah.c
ld -shared -o extensions/libipt_ah.so extensions/libipt_ah_sh.o
cc -O2 -Wall -Wunused -I/usr/src/linux-2.4.7-10/include -Iinclude/
-DIPTABLES_VERSION=\"1.2.7a\" -fPIC -o extensions/libipt_conntrack_sh.o -c
extensions/libipt_conntrack.c
In file included from extensions/libipt_conntrack.c:14:
include/linux/netfilter_ipv4/ipt_conntrack.h:28: `IP_CT_DIR_MAX' undeclared
here (not in a function)
include/linux/netfilter_ipv4/ipt_conntrack.h:29: `IP_CT_DIR_MAX' undeclared
here (not in a function)
include/linux/netfilter_ipv4/ipt_conntrack.h:29: `IP_CT_DIR_MAX' undeclared
here (not in a function)
extensions/libipt_conntrack.c: In function `parse_status':
extensions/libipt_conntrack.c:103: `IPS_EXPECTED' undeclared (first use in
this function)
extensions/libipt_conntrack.c:103: (Each undeclared identifier is reported
only once
extensions/libipt_conntrack.c:103: for each function it appears in.)
extensions/libipt_conntrack.c:105: `IPS_SEEN_REPLY' undeclared (first use in
this function)
extensions/libipt_conntrack.c:107: `IPS_ASSURED' undeclared (first use in
this function)
extensions/libipt_conntrack.c: In function `parse':
extensions/libipt_conntrack.c:202: `IP_CT_DIR_ORIGINAL' undeclared (first
use in this function)
extensions/libipt_conntrack.c:259: `IP_CT_DIR_REPLY' undeclared (first use
in this function)
extensions/libipt_conntrack.c: In function `print_status':
extensions/libipt_conntrack.c:364: `IPS_EXPECTED' undeclared (first use in
this function)
extensions/libipt_conntrack.c:368: `IPS_SEEN_REPLY' undeclared (first use in
this function)
extensions/libipt_conntrack.c:372: `IPS_ASSURED' undeclared (first use in
this function)
extensions/libipt_conntrack.c: In function `matchinfo_print':
extensions/libipt_conntrack.c:420: `IP_CT_DIR_ORIGINAL' undeclared (first
use in this function)
extensions/libipt_conntrack.c:440: `IP_CT_DIR_REPLY' undeclared (first use
in this function)
make: *** [extensions/libipt_conntrack_sh.o] Error 1
Is there any probleme, and how can i delete the old version of iptables.
Thanks.
^ permalink raw reply [flat|nested] 2+ messages in thread
* Re: H323 module installing and copiling prob
2003-03-19 11:58 H323 module installing and copiling prob MOUDARIR Mohamed
@ 2003-03-19 19:49 ` Martin
0 siblings, 0 replies; 2+ messages in thread
From: Martin @ 2003-03-19 19:49 UTC (permalink / raw)
To: MOUDARIR Mohamed; +Cc: netfilter
Why don't you try upgrading your kernel to 2.4.20? I know patching the
2.4.20 kernel works indeed, because I have RedHat 8.0 and I compiled a
vanila kernel (from kernel.org), applied the H323 patch through the
patch-o-matic, enabled the H323 module through the linux menu
configuration (the curses enabled one), and recompiled.. Reboot, and you
should be able to place calls from a NAT-ed box where Linux is your
gateway/firewall...
What I cannot do, and what no one here seems to have offered any advice
on, is how to get incoming NetMeeting connections to go through NAT and
into one of the boxes on the internal LAN.. I tried various command sets
that I found on the archives of this list, but to no avail, none of them
work. So either I'm doing something wrong, or incoming netmeeting
connections are just not possible behind NAT...
Martin
p.s. One more important thing - patching the RedHat kernel with the
Patch-o-Matic H323 patch, does not work. There's some conflicts that do
not resolve when patching so the patch fails to apply. Which is why I said
to use 2.4.20 vanila...
On Wed, 19 Mar 2003, MOUDARIR Mohamed wrote:
> Date: Wed, 19 Mar 2003 11:58:46 -0000
> From: MOUDARIR Mohamed <moudarir@Richbond.ma>
> To: netfilter@lists.netfilter.org
> Subject: H323 module installing and copiling prob
>
> Hi all,
> I want to use netmeeting over an iptables firewal version 1.2.3 ( redhat
> 7.2, kernel 2.4 )
> I use this command to update iptables :
> # cvs -d :pserver:cvs@pserver.netfilter.org:/cvspublic login
> # cvs -d :pserver:cvs@pserver.netfilter.org:/cvspublic co
> netfilter/userspace netfilter/patch-o-matic
> And to make dependecies :
> # cd /usr/src/linux/
> # make dep
> And cd ton ~/netfilter/patch-o-matic/ :
> ./runme extra
> and # ./runme --batch extra/h323-conntrack-nat.patch
> After that, i add H323 module to kernel :# make menuconfig
> And compile iptables :
> # cd ~/netfilter/userspace/
> # make all install
[snip]
>
> Is there any probleme, and how can i delete the old version of iptables.
> Thanks.
>
^ permalink raw reply [flat|nested] 2+ messages in thread
end of thread, other threads:[~2003-03-19 19:49 UTC | newest]
Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2003-03-19 11:58 H323 module installing and copiling prob MOUDARIR Mohamed
2003-03-19 19:49 ` Martin
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.