The output of "lsmod | grep ip" is : [root@firewall rc.d]# lsmod | grep ip ipt_ttl 592 0 (unused) ipsec 262336 2 ipt_state 576 6 (autoclean) ipt_MASQUERADE 1408 1 (autoclean) iptable_nat 17616 1 (autoclean) [ipt_MASQUERADE] ip_conntrack 19648 2 (autoclean) [ipt_state ipt_MASQUERADE iptable_nat] iptable_mangle 2128 0 (autoclean) (unused) iptable_filter 1680 1 (autoclean) ip_tables 12160 8 [ipt_ttl ipt_state ipt_MASQUERADE iptable_nat iptable_mangle iptable_filter] [root@firewall rc.d]# I have redhat 7.2 and kernel 2.4.22 iptables 1.2.9 compiled in the kernel. Thank you. ----- Original Message ----- From: "Jason Opperisano" <Jopperisano@xxxxxxxxxxxxxxxx> To: "Gonzalez, Federico" <fgonzalez@xxxxxxxxxxxxxx>; <netfilter@xxxxxxxxxxxxxxxxxxx> Sent: Friday, July 23, 2004 3:34 PM Subject: RE: TTL target hmmm... can you provide the output of "lsmod | grep ip" are you running the stock kernel/iptables? what distro/version are you running? sounds like you're missing something module-wise. -j -----Original Message----- From: netfilter-admin@xxxxxxxxxxxxxxxxxxx [mailto:netfilter-admin@xxxxxxxxxxxxxxxxxxx]On Behalf Of Gonzalez, Federico Sent: Friday, July 23, 2004 2:29 PM To: Jason Opperisano; netfilter@xxxxxxxxxxxxxxxxxxx Subject: Re: TTL target I get the following error: iptables: No chain/target/match by that name Thanks ----- Original Message ----- From: "Jason Opperisano" <Jopperisano@xxxxxxxxxxxxxxxx> To: "Gonzalez, Federico" <fgonzalez@xxxxxxxxxxxxxx>; <netfilter@xxxxxxxxxxxxxxxxxxx> Sent: Friday, July 23, 2004 3:21 PM Subject: RE: TTL target um--on fedora core 1--which seems to match the versions you provide, the TTL match target is there. $ uname -r 2.4.22-1.2197.nptl $ iptables -V iptables v1.2.9 # iptables -A INPUT -m ttl --ttl-eq 1 -j DROP # # iptables -vnL INPUT Chain INPUT (policy DROP 184 packets, 19161 bytes) pkts bytes target prot opt in out source destination 0 0 DROP all -- * * 0.0.0.0/0 0.0.0.0/0 TTL match TTL == 1 -j -----Original Message----- From: netfilter-admin@xxxxxxxxxxxxxxxxxxx [mailto:netfilter-admin@xxxxxxxxxxxxxxxxxxx]On Behalf Of Gonzalez, Federico Sent: Friday, July 23, 2004 1:52 PM To: netfilter@xxxxxxxxxxxxxxxxxxx Subject: TTL target Hi, I have iptables 1.2.9, red hat kernel 2.4.22 and i need to use the TTL target to change the packets TTL. How do i enable this functionality ? Thank you.
