CC netfilter-devel to get more people in touch Thanks ! Le vendredi 13 août 2010 à 13:47 +0300, Jussi Kivilinna a écrit : > Hello! > > I have server/firewall running Debian lenny with 32bit userspace and > 64bit kernel. After upgrading from 2.6.34 to 2.6.35, I couldn't get > any new chains work. Simply doing (with 32bit iptables) > > iptables -N new_chain > iptables -A OUTPUT -j new_chain > iptables -A OUTPUT -j ACCEPT > > cause output to freeze. "iptables -L -vn" shows: > > Chain OUTPUT (policy ACCEPT 3397 packets, 637K bytes) > pkts bytes target prot opt in out source destination > 3 252 new_chain all -- * * 0.0.0.0/0 0.0.0.0/0 > 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 > > Ping shows "ping: sendmsg: Operation not permitted". > > With recompiled 64bit iptables, example above works fine. > > -Jussi > > -- -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
