It turned out the kernel module which implements REDIRECT had not been flagged for compilation in the distro. I had been given.
For the record, in case anyone else has the same problems again, to fix it:
Edit
/usr/src/linux/.config
and change
# CONFIG_IP_NF_TARGET_REDIRECT is not set
to
CONFIG_IP_NF_TARGET_REDIRECT=m
then
make modules
make modules_install
depmod -ae
Now modprobe can be used to add the module to the kernel.
Chris Haynes
On Thursday, October 21, 2010 at 1:33:13 AM, Chris Haynes wrote:
> Although no strictly a 'firewall' question, I expect the experts on
> iptables are on this list.
...
> I'm trying to get the following iptables command to work (response shown
> on lines 2 & 3):
> $ sudo iptables -v -A PREROUTING -t nat -p tcp --dport 80 -j REDIRECT
> --to-port 8080
> REDIRECT tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:80 redir
> ports 8080
> iptables: No chain/target/match by that name
...
--
To UNSUBSCRIBE, email to debian-firewall-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: http://lists.debian.org/9610501664.20101022083656@harvington.org.uk
No comments:
Post a Comment