[PATCH IPTABLES 0/13]: Unifies rest of ip[6]tables
matches/targets
Yasuyuki KOZAKAI
yasuyuki.kozakai at toshiba.co.jp
Tue Jul 24 11:49:00 CEST 2007
From: Jan Engelhardt <jengelh at computergmbh.de>
Date: Tue, 24 Jul 2007 11:12:57 +0200 (CEST)
> On Jul 24 2007 18:08, Yasuyuki KOZAKAI wrote:
> >
> >> iptables svn6960 does not yet search for the libxt_*.so files.
> >>
> >>
> >> # strace -e open ./iptables -t nat -L
> >> ...
> >> open("/ws/iptables/extensions/libipt_tcp.so", O_RDONLY) = -1 ENOENT (No
> >> such file or directory)
> >> REDIRECT tcp -- anywhere 192.168.250.2 UNKNOWN
> >> match `tcp' redir ports 8080
> >
> >Thanks for report.
> >
> >I wrote Makefile to make symbolic link from libip[6]t_*.so to libxt_*.so.
> >How did you make and install iptables ?
>
> From /ws/iptables (svn code dir):
>
> make KERNEL_DIR=/ws/linux/linux-2.6.22 PREFIX=/usr
> LIBIPT_DIR=/ws/iptables/extensions
>
> I did not install it, but ran it from /ws/iptables.
Wow, I didn't expect such usage. But I'm not sure we should support
this usage. The reason why I employed symbolic link instead of iptables
searching libxt_*.so is to keep codes simple. Actually I'm not familiar
of 'tryload' argument of find_{match,target} so I just kept the behavior of
them :) If I come up with good idea, I will support it.
-- Yasuyuki Kozakai
More information about the netfilter-devel
mailing list