Hello
I've applied the netfilter time patch to my 2.6.18.3 kernel.
I use a 2.6.18.3 from kernel.org (I mean not a distribution package)
+iptables 1.3.6 debian sarge backport from backports.org
in the iptables package,the time patch is included ( libipt_time.c,
.test-time)
but include/linux/netfilter_ipv4/ipt_time.h is required too and this
file is not available in my kernel.
I've trie with pom without success because try to apply many patch
except the time patch ...
So I've search on google and I found one! It applied correctly and I can
compile my kernel ...
What happens is that seems that the time patch is incompatible with
2.6.18.3 kernel
I found on google a post that tell this patch works with a 2.16.15 but
not with 2.6.17 due to change on somes internals kernel features
As you can see the patch is detected :
#iptables -m time --help
...
TIME v1.3.6 options:
[ --timestart value ] [ --timestop value] [ --days listofdays ] [
--datestart value ] [ --datestop value ]
timestart value : HH:MM (default 00:00)
timestop value : HH:MM (default 23:59)
Note: daylight savings time changes are not
tracked
listofdays value: a list of days to apply
from Mon,Tue,Wed,Thu,Fri,Sat,Sun
Coma speparated, no space, case sensitive.
Defaults to all days.
datestart value : YYYY[:MM[:DD[:hh[:mm[:ss]]]]]
If any of month, day, hour, minute or second is
not specified, then defaults to their smallest
1900 <= YYYY < 2037
1 <= MM <= 12
1 <= DD <= 31
0 <= hh <= 23
0 <= mm <= 59
0 <= ss <= 59
datestop value : YYYY[:MM[:DD[:hh[:mm[:ss]]]]]
If the whole option is ommited, default to
never stop
If any of month, day, hour, minute or second is
not specified, then default to their smallest
Unfortunately when I try to apply somes rules I obtain this
#iptables -A OUTPUT -m time --timestart 16:11
iptables: Invalid argument
and this in "dmesg"
Dec 12 18:37:05 gestor1 kernel: ip_tables: time match: invalid size 0 != 16
Dec 12 18:37:09 gestor1 kernel: ip_tables: time match: invalid size 0 != 16
Dec 12 18:37:51 gestor1 kernel: ip_tables: time match: invalid size 0 != 16
This patch should be very usefull for me. My customers ask me for this
features on QOS anf firewall appliances.
I hope that someone can propose me a solution.
seems that the orginal author doesn't maitain this patch ?
Sébastien
--
ZEN SOLUCIONES - Be in XForms take your "Concentré"
Sébastien CRAMATTE
C/ Alfonso X el Sabio, 29
30565 Las Torres de Cotillas (Murcia)
ESPAÑA
Mobile : +34 627 66 52 83
E-mail : scramatte@xxxxxxxxxxxxxxxxx
Site : www.zensoluciones.com
Skype : scramatte
Msn : scramatte@xxxxxxxxxxx
Jabber: scramatte@xxxxxxxxxx
VoIP: +33 1 7090 3413
--
CONCENTRÉ
xml entreprise grade framework
http://concentre.zensoluciones.com
--
This e-mail is privileged and may contain confidential information
intended only for the person(s) named above. If you receive this e-mail
in error, please notify the sender immediately and delete it. E-mail and
internet transmissions can't be warrant privacy, integrity or correct
reception. The sender will not be liable for any damages resulting.
Este mensaje va dirigido, de manera exclusiva, a su destinatario y puede
contener informaciones confidential. En caso de haber recibido este
mensaje por error, informe al emisor imediadamente y proceda a su
eliminación. El correo electrónico y las comunicaciones por medio de
Internet no permiten garantizar la confidencialidad de los mensajes
transmitidos, así como tampoco su integridad o su correcta recepción. El
emisor no asume responsabilidad alguna por tales circunstancias.
Ce message est destiné exclusivement à son destinataire et peut contenir
des informations confidentielles. En cas de réception d'un tel message
par erreur, informez l'expéditeur immédiatement et procédez à son
effacement. Il n'est pas possible de garantir la confidentialité,
l'intégrité ou la réception correcte du courrier électronique ainsi que
des communications par internet. L'expéditeur ne peut être tenu pour
responsable d'éventuels dommages commis.
