netfilter Upgrade
Dharmu
dharmu@nsecure.net
Fri, 19 Oct 2001 09:55:51 +0530 (IST)
>
> Message: 3
> From: Justin Porteous <justin@mercdata.co.za>
> To: "'netfilter@lists.samba.org.'" <netfilter@lists.samba.org>
> Subject: Netfilter Upgrade
> Date: Wed, 17 Oct 2001 13:33:01 +0200
>
> Hi
>
> I've installed Red Hat 7.1
> I've been using ipchains till now, and have decided to go with iptables
> instead.
>
> it was complaining about something about device not ready ect ect, and
> somethnig about insmod... ?
>
> then I went into ntsysv (or setup / services) and disabled ipchains and
> left iptables there
>
> My version is :
> [root@popcorn /]# iptables --version
> iptables v1.2.1a
>
> How do I up grade b'cos
> [root@popcorn utils]# rpm -i iptables-1.2.3-2.i386.rpm
> file /lib/iptables/libipt_DNAT.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_FTOS.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_LOG.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_MARK.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_MASQUERADE.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_MIRROR.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_REDIRECT.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_REJECT.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_SNAT.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_TCPMSS.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_TOS.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_TTL.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_ULOG.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_ah.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_esp.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_icmp.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_iplimit.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_limit.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_mac.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_mark.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_multiport.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_owner.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_standard.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_state.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_tcp.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_tcpmss.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_tos.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_ttl.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_udp.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_unclean.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /sbin/iptables from install of iptables-1.2.3-2 conflicts with file
> from package iptables-1.2.1a-1
> file /sbin/iptables-restore from install of iptables-1.2.3-2 conflicts with
> file from package iptables-1.2.1a-1
> file /sbin/iptables-save from install of iptables-1.2.3-2 conflicts with
> file from package iptables-1.2.1a-1
> file /usr/share/man/man8/iptables-restore.8.gz from install of
> iptables-1.2.3-2 conflicts with file from package iptables-1.2.1a-1
> file /usr/share/man/man8/iptables-save.8.gz from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /usr/share/man/man8/iptables.8.gz from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
>
>
> How doI check if it works?
>
> My List
> [root@popcorn /]# iptables -L
> Chain INPUT (policy DROP)
> target prot opt source destination
> ACCEPT all -- anywhere anywhere
> ACCEPT all -- anywhere anywhere state
> RELATED,ESTABLISHED
> ACCEPT tcp -- anywhere anywhere tcp dpt:http
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:ftp
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:smtp
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:rsync
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:domain
> state NEW
> REJECT tcp -- anywhere anywhere reject-with
> tcp-reset
> REJECT udp -- anywhere anywhere reject-with
> icmp-port-unreachable
> ACCEPT all -- anywhere anywhere
> ACCEPT all -- anywhere anywhere state
> RELATED,ESTABLISHED
> ACCEPT tcp -- anywhere anywhere tcp dpt:http
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:ftp
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:smtp
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:rsync
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:domain
> state NEW
> REJECT tcp -- anywhere anywhere reject-with
> tcp-reset
> REJECT udp -- anywhere anywhere reject-with
> icmp-port-unreachable
>
> Chain FORWARD (policy ACCEPT)
> target prot opt source destination
>
> Chain OUTPUT (policy ACCEPT)
> target prot opt source destination
>
>
> Regards,
> Justin Porteous
> IT Administor
> Mercedes Datakor PTY LTD
> Tel (011) 654-9030
> Fax (011) 654-9200
> Cell (082) 346-6600
>
> --__--__--
>
> Message: 4
> From: "Wolfgang Pichler" <wpichler@dialog-gruppe.at>
> To: "iptables maillinglist" <netfilter@lists.samba.org>
> Subject: AW: Netfilter Upgrade
> Date: Wed, 17 Oct 2001 14:15:39 +0200
>
> How about rpm -ivh iptables-1.2.3-2.i386.rpm --force ?
>
>
> -----Ursprüngliche Nachricht-----
> Von: netfilter-admin@lists.samba.org
> [mailto:netfilter-admin@lists.samba.org]Im Auftrag von Justin Porteous
> Gesendet: Mittwoch, 17. Oktober 2001 13:33
> An: 'netfilter@lists.samba.org.'
> Betreff: Netfilter Upgrade
>
>
> Hi
>
> I've installed Red Hat 7.1
> I've been using ipchains till now, and have decided to go with iptables
> instead.
>
> it was complaining about something about device not ready ect ect, and
> somethnig about insmod... ?
>
> then I went into ntsysv (or setup / services) and disabled ipchains and
> left iptables there
>
> My version is :
> [root@popcorn /]# iptables --version
> iptables v1.2.1a
>
> How do I up grade b'cos
> [root@popcorn utils]# rpm -i iptables-1.2.3-2.i386.rpm
> file /lib/iptables/libipt_DNAT.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_FTOS.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_LOG.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_MARK.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_MASQUERADE.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_MIRROR.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_REDIRECT.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_REJECT.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_SNAT.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_TCPMSS.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_TOS.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_TTL.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_ULOG.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_ah.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_esp.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_icmp.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_iplimit.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_limit.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_mac.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_mark.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_multiport.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_owner.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_standard.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_state.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_tcp.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_tcpmss.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_tos.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_ttl.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_udp.so from install of iptables-1.2.3-2 conflicts
> with file from package iptables-1.2.1a-1
> file /lib/iptables/libipt_unclean.so from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /sbin/iptables from install of iptables-1.2.3-2 conflicts with file
> from package iptables-1.2.1a-1
> file /sbin/iptables-restore from install of iptables-1.2.3-2 conflicts with
> file from package iptables-1.2.1a-1
> file /sbin/iptables-save from install of iptables-1.2.3-2 conflicts with
> file from package iptables-1.2.1a-1
> file /usr/share/man/man8/iptables-restore.8.gz from install of
> iptables-1.2.3-2 conflicts with file from package iptables-1.2.1a-1
> file /usr/share/man/man8/iptables-save.8.gz from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
> file /usr/share/man/man8/iptables.8.gz from install of iptables-1.2.3-2
> conflicts with file from package iptables-1.2.1a-1
>
>
> How doI check if it works?
>
> My List
> [root@popcorn /]# iptables -L
> Chain INPUT (policy DROP)
> target prot opt source destination
> ACCEPT all -- anywhere anywhere
> ACCEPT all -- anywhere anywhere state
> RELATED,ESTABLISHED
> ACCEPT tcp -- anywhere anywhere tcp dpt:http
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:ftp
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:smtp
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:rsync
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:domain
> state NEW
> REJECT tcp -- anywhere anywhere reject-with
> tcp-reset
> REJECT udp -- anywhere anywhere reject-with
> icmp-port-unreachable
> ACCEPT all -- anywhere anywhere
> ACCEPT all -- anywhere anywhere state
> RELATED,ESTABLISHED
> ACCEPT tcp -- anywhere anywhere tcp dpt:http
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:ftp
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:smtp
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:rsync
> state NEW
> ACCEPT tcp -- anywhere anywhere tcp dpt:domain
> state NEW
> REJECT tcp -- anywhere anywhere reject-with
> tcp-reset
> REJECT udp -- anywhere anywhere reject-with
> icmp-port-unreachable
>
> Chain FORWARD (policy ACCEPT)
> target prot opt source destination
>
> Chain OUTPUT (policy ACCEPT)
> target prot opt source destination
>
>
> Regards,
> Justin Porteous
> IT Administor
> Mercedes Datakor PTY LTD
> Tel (011) 654-9030
> Fax (011) 654-9200
> Cell (082) 346-6600
>
> --__--__--
>
Here instead of using rpm -i use rpm -U, which is the upgrading
command using rpm. And the rule sets which you have given has to work as
there is no chang is required for the newer version
Regards
--
Dharmendra.T
Linux Expert
nSecure Software(P) Ltd.
www.nsecure.net