Friday, October 22, 2010

Re: Help getting iptables REDIRECT to work

Thanks for all the responses to the plea for help below.
It turned out the kernel module which implements REDIRECT had not been flagged for compilation in the distro. I had been given.

For the record, in case anyone else has the same problems again, to fix it:

Edit
/usr/src/linux/.config
and change
# CONFIG_IP_NF_TARGET_REDIRECT is not set
to
CONFIG_IP_NF_TARGET_REDIRECT=m
then

make modules
make modules_install
depmod -ae

Now modprobe can be used to add the module to the kernel.

Chris Haynes

On Thursday, October 21, 2010 at 1:33:13 AM, Chris Haynes wrote:
> Although no strictly a 'firewall' question, I expect the experts on
> iptables are on this list.
...

> I'm trying to get the following iptables command to work (response shown
> on lines 2 & 3):

> $ sudo iptables -v -A PREROUTING -t nat -p tcp --dport 80 -j REDIRECT
> --to-port 8080
> REDIRECT tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:80 redir
> ports 8080
> iptables: No chain/target/match by that name
...


--
To UNSUBSCRIBE, email to debian-firewall-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: http://lists.debian.org/9610501664.20101022083656@harvington.org.uk

No comments:

Post a Comment