Hey guys, I have a problem with my iptables installation. My system is CentOS 5.5 and the kernel version is 2.6.32.21. First of all the default installation of iptables was version 1.3.5. which seemed to have an issue regarding the connlimit module, cause i got that weird errors. ----------------------------------------------- testserver1:/# iptables -A INPUT -p tcp --dport 80 -m connlimit --connlimit-above 3 -j REJECT iptables: Unknown error 18446744073709551615 ----------------------------------------------- So i found the following reference link ----------------------------------------------- http://bugzilla.netfilter.org/show_bug.cgi?id=515 Summary: connlimit filter doesn't work in 1.3.5 version of iptables ----------------------------------------------- which lead me to try to update iptables. Unfortunately updating iptables via yum didn't seem to work "No Packages marked for Update". So i tried to manually install 1.3.8 (just some minor releases up to prevent huge conflicts) against the kernel source. That actually worked. ---------------------------------------------- testserver1:/usr/src/iptables-1.3.8# iptables -v iptables v1.3.8: no command specified ---------------------------------------------- But i missed something, it seems that i need to update the kernel netfilters aswell ---------------------------------------------- testserver1:/usr/src/iptables-1.3.8# iptables -m connlimit --help iptables: match `connlimit' v1.3.5 (I'm v1.3.8). ---------------------------------------------- and i have no real clue how to do that and i dont find any useful links guiding me. As you may have noticed i am not a kernel expert and never tried to install iptables from source before, i would be very happy about any advice, hint, link or whatever you could give to me. A solution to solve the "Unknown error" in Version 1.3.5 without updating the whole kernel netfilter modules or iptables would be fine for me aswell. Thx for any help, Björn -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
