[PATCH] Warn people that ipchains and ipfwadm are going away.

Marc Ballarin Ballarin.Marc at gmx.de
Wed Sep 22 01:35:16 CEST 2004


On Tue, 21 Sep 2004 15:36:00 -0700
"David S. Miller" <davem at davemloft.net> wrote:

> You can't have ipchains and iptables loaded at the same time.
> You must first manually unload iptables, then you can
> successfully load the ipchains module.

Yes, I know, something seems strange here.

Just to be sure, I disabled iptables completely and rebooted:
(Complete config.gz is attached.)

# Networking options
#
CONFIG_PACKET=y
# CONFIG_PACKET_MMAP is not set
# CONFIG_NETLINK_DEV is not set
CONFIG_UNIX=y
CONFIG_NET_KEY=m
CONFIG_INET=y
CONFIG_IP_MULTICAST=y
# CONFIG_IP_ADVANCED_ROUTER is not set
# CONFIG_IP_PNP is not set
# CONFIG_NET_IPIP is not set
# CONFIG_NET_IPGRE is not set
# CONFIG_IP_MROUTE is not set
# CONFIG_ARPD is not set
CONFIG_SYN_COOKIES=y
CONFIG_INET_AH=m
CONFIG_INET_ESP=m
CONFIG_INET_IPCOMP=m
CONFIG_INET_TUNNEL=m

#
# IP: Virtual Server Configuration
#
# CONFIG_IP_VS is not set
# CONFIG_IPV6 is not set
CONFIG_NETFILTER=y
# CONFIG_NETFILTER_DEBUG is not set

#
# IP: Netfilter Configuration
#
CONFIG_IP_NF_CONNTRACK=m
# CONFIG_IP_NF_CT_ACCT is not set
# CONFIG_IP_NF_CT_PROTO_SCTP is not set
# CONFIG_IP_NF_FTP is not set
# CONFIG_IP_NF_IRC is not set
# CONFIG_IP_NF_TFTP is not set
# CONFIG_IP_NF_AMANDA is not set
CONFIG_IP_NF_QUEUE=m
# CONFIG_IP_NF_IPTABLES is not set
CONFIG_IP_NF_NAT_NEEDED=y
# CONFIG_IP_NF_ARPTABLES is not set
CONFIG_IP_NF_COMPAT_IPCHAINS=m
CONFIG_IP_NF_COMPAT_IPFWADM=m
CONFIG_XFRM=y
# CONFIG_XFRM_USER is not set

This gives me the same error upon modprobe ipchains.

If I disable CONFIG_IP_NF_CONNTRACK, I get unresolved symbols:
ipchains: Unknown symbol ip_ct_log_invalid

(Is that combination supposed to work?)

lsmod (ALSA snipped):

vfat                   10432  0
stir4200               10052  0
irda                  110972  1 stir4200
crc_ccitt               1664  1 irda
fat                    36320  1 vfat
parport_pc             29440  1
lp                      7976  0
parport                32072  2 parport_pc,lp
floppy                 50576  0
radeon                120676  2
nvidia_agp              5404  1
agpgart                26024  2 nvidia_agp
8139too                19200  0
mii                     3712  1 8139too
crc32                   3840  2 stir4200,8139too
evdev                   6848  0

Regards
-------------- next part --------------
A non-text attachment was scrubbed...
Name: config.gz
Type: application/x-gzip
Size: 8796 bytes
Desc: not available
Url : /pipermail/netfilter-devel/attachments/20040922/25281a07/config-0001.bin


More information about the netfilter-devel mailing list