Hmmm...iptables: Invalid argument

Mike Porter mike@UDel.Edu
Wed, 19 Apr 2000 00:13:10 -0400 (EDT) 

I issued:  iptables -A POSTROUTING -t nat -o ppp0 -j MASQUERDE

And received EINVAL.  Did I make a simple error?  Or maybe
something is really broken...so, here are the details:

kernel: 2.3.99-pre5
iptables: 1.0.0

Modules loaded:

modprobe ipt_MASQUERADE

giving:

ipt_MASQUERADE          1608   0 
iptable_nat            14432   0  [ipt_MASQUERADE]
ip_conntrack           13892   1  [ipt_MASQUERADE iptable_nat]
ip_tables              12496   4  [ipt_MASQUERADE iptable_nat]

strace:

setsockopt(3, SOL_IP, 0x40 /* IP_??? */, [7627118], 876) = -1 EINVAL (Invalid argument)

Defining the debug options in ip_table.c, I get in the kernel log:

ip_tables: (c)2000 Netfilter core team
ip_conntrack (1023 buckets, 8184 max)
kmem_create: Dup name - ip_conntrack
translate_table: size 636
Finished chain 0
Finished chain 3
Finished chain 4
table->private->number = 4
t->private->number = 4
translate_table: size 784
Finished chain 0
Finished chain 3
Finished chain 4
ip_tables: check failed for `MASQUERADE'.

Changing the two occurances of this message to checkmatch and
checkentry, and reloading the modules, I get:

ip_tables: checkentry failed for `MASQUERADE'.

Adding debugging to ipt_MASQUERADE, we have:
find_inlist: loading `ipt_MASQUERADE'.
masquerade_check: size 0 != 20.

which doesn't mean anything to me, but it probably does to someone
else.  I'm not on this list, so if someone could reply to me,
I'd appreciate it.

Thanks,

Mike

Oh, .config:

CONFIG_NETFILTER=y
#
#   IP: Netfilter Configuration
#
CONFIG_IP_NF_CONNTRACK=m
CONFIG_IP_NF_FTP=m
# CONFIG_IP_NF_QUEUE is not set
CONFIG_IP_NF_IPTABLES=m
CONFIG_IP_NF_MATCH_LIMIT=m
CONFIG_IP_NF_MATCH_MAC=m
CONFIG_IP_NF_MATCH_MARK=m
CONFIG_IP_NF_MATCH_MULTIPORT=m
CONFIG_IP_NF_MATCH_TOS=m
CONFIG_IP_NF_MATCH_STATE=m
# CONFIG_IP_NF_MATCH_UNCLEAN is not set
# CONFIG_IP_NF_MATCH_OWNER is not set
CONFIG_IP_NF_FILTER=m
CONFIG_IP_NF_TARGET_REJECT=m
# CONFIG_IP_NF_TARGET_MIRROR is not set
CONFIG_IP_NF_NAT=m
CONFIG_IP_NF_NAT_NEEDED=y
CONFIG_IP_NF_TARGET_MASQUERADE=m
CONFIG_IP_NF_TARGET_REDIRECT=m
CONFIG_IP_NF_MANGLE=m
CONFIG_IP_NF_TARGET_TOS=m
CONFIG_IP_NF_TARGET_MARK=m
CONFIG_IP_NF_TARGET_LOG=m
CONFIG_IP_NF_COMPAT_IPCHAINS=m
CONFIG_IP_NF_NAT_NEEDED=y
CONFIG_IP_NF_COMPAT_IPFWADM=m
CONFIG_IP_NF_NAT_NEEDED=y

===
Mike Porter <mike@udel.edu>
PGP Fingerprint: F4 AE E1 9F 67 F7 DA EA  2F D2 37 F3 99 ED D1 C2