ipt_recent is now missing? [message #28754] |
Thu, 27 March 2008 21:42 |
TheWiseOne
Messages: 66 Registered: September 2005 Location: Pennsylvania
|
Member |
|
|
[root@vz18 ~]# lsmod | grep ipt_recent
ipt_recent 43404 0
x_tables 52616 14 ipt_recent,xt_conntrack,ipt_REDIRECT,xt_tcpudp,xt_length,ipt _ttl,xt_tcpmss,ipt_TCPMSS,xt_multiport,xt_limit,ipt_tos,ipt_ REJECT,iptable_nat,ip_tables
[root@vz18 ~]# grep ipt_recent /etc/sysconfig/vz
IPTABLES="iptable_filter iptable_mangle ipt_limit ipt_multiport ipt_tos ipt_TOS ipt_REJECT ipt_TCPMSS ipt_tcpmss ipt_ttl ipt_LOG ipt_length ip_conntrack ip_conntrack_ftp ip_conntrack_irc ipt_conntrack ipt_state ipt_helper iptable_nat ip_nat_ftp ip_nat_irc ipt_REDIRECT ipt_recent"
[root@vz18 ~]# grep ipt_recent /etc/vz/conf/122.conf
IPTABLES="iptable_filter iptable_mangle ipt_limit ipt_multiport ipt_tos ipt_TOS ipt_REJECT ipt_TCPMSS ipt_tcpmss ipt_ttl ipt_LOG ipt_length ip_conntrack ip_conntrack_ftp ip_conntrack_irc ipt_conntrack ipt_state ipt_helper iptable_nat ip_nat_ftp ip_nat_irc ipt_REDIRECT ipt_recent"
[root@vz18 ~]# vzctl enter 122
Warning: Unknown iptable module: ipt_recent, skipped
Warning: Unknown iptable module: ipt_recent, skipped
entered into VE 122
Amy I missing something?
According to http://openvz.org/news/updates ipt_recent was supported since kernel 2.6.18-028stab049.1.
Matt Ayres
TekTonic
[Updated on: Thu, 27 March 2008 21:44] Report message to a moderator
|
|
|
|
Re: ipt_recent is now missing? [message #28800 is a reply to message #28759] |
Fri, 28 March 2008 14:55 |
TheWiseOne
Messages: 66 Registered: September 2005 Location: Pennsylvania
|
Member |
|
|
Still no deals...
[root@vz18 conf]# grep IPTABLES /etc/vz/conf/100.conf
IPTABLES="iptable_filter iptable_mangle ipt_limit ipt_multiport ipt_tos ipt_TOS ipt_REJECT ipt_TCPMSS ipt_tcpmss ipt_ttl ipt_LOG ipt_length ip_conntrack ip_conntrack_ftp ip_conntrack_irc ipt_conntrack ipt_state ipt_helper iptable_nat ip_nat_ftp ip_nat_irc ipt_REDIRECT ipt_recent"
[root@vz18 conf]# vzctl enter 100
Warning: Unknown iptable module: ipt_recent, skipped
entered into VE 100
Matt Ayres
TekTonic
|
|
|
Re: ipt_recent is now missing? [message #28807 is a reply to message #28800] |
Fri, 28 March 2008 16:29 |
khorenko
Messages: 533 Registered: January 2006 Location: Moscow, Russia
|
Senior Member |
|
|
Matt,
please, don't pay attention to this warnings,
as Vasily already said - they are generated by vzctl and vzctl really doesn't know anything about ipt_recent.
But despite on this warning, functionality of the ipt_recent module _will be_ available inside a Container - just try to use it!
You can check which modules are available inside a Container by 'cat /proc/net/ip_tables_matches':
# vzctl exec 100 cat /proc/net/ip_tables_matches
recent
length
ttl
tcpmss
multiport
multiport
limit
tos
icmp
udp
tcp
Just try to create a rule inside a Container which requires ipt_recent functionality - it should work. Could you please try and share the results with us?
Thank you,
Konstantin Khorenko
If your problem is solved - please, report it!
It's even more important than reporting the problem itself...
|
|
|
Re: ipt_recent is now missing? [message #28810 is a reply to message #28754] |
Fri, 28 March 2008 16:55 |
TheWiseOne
Messages: 66 Registered: September 2005 Location: Pennsylvania
|
Member |
|
|
I will try, but assuming it does work... shouldn't vzctl being fixed to not display the warning? Should I submit a bug report or will someone from the OpenVZ team?
Matt Ayres
TekTonic
|
|
|
|
|
|
|