Don't use the version that comes with RedHat but download the latest iptables version with it's companion patch-o-matic.. then patch the latest kernel with the latest iptables and use patch-o-matic to add the string module in. it's not standard on the distros... I have 2.4.19 and 1.2.7a and all is well in the land of Oz... ;) I don't recommend 1.2.8 with 2.4.20 if your new to kernel compiling and patching... Thanks, ____________________________________________ George Vieira Systems Manager georgev@xxxxxxxxxxxxxxxxxxxxxx Citadel Computer Systems Pty Ltd http://www.citadelcomputer.com.au -----Original Message----- From: olivier [mailto:netfilter.org@xxxxxxxxxx] Sent: Tuesday, June 03, 2003 8:58 AM To: netfilter@xxxxxxxxxxxxxxxxxxx Subject: Can't use iptables -m string with any RedHat distri Hello All ! I have been having this problem for quite a while and decided to make a post about it. If you run a RedHat distri, and don't want to compile anything, just using RPM (especially if you plan to maintain your server with RHN), you get this error trying to use the string matching option: # iptables -A INPUT -j ACCEPT -m string --string HELLO iptables v1.x.x: Couldn't load match `string':/lib/iptables/libipt_string.so: cannot open shared object file: No such file or directory Where is this library ? # find / -name libipt_string.so # Hmmm... Obviously not included in any of the iptables RPMs provided by redhat. So I downloaded the matching iptables1.x.x.tar.bz2 from netfilter.org, and found the libipt_string.c in there. With a "make", this library doesn't get compiled... OK, then I will compile it myself, then: cc -O2 -Wall -I etc.. etc... ipt_strings.h not found... and can't seem to find this file anywhere.. not even in the redhat kernel source rpm .... Anybody has an idea on how to make "iptables --m string" work with RedHat ? Thanks All !!!
