I don't have strace on the device, it's pretty minimal. But libxt_owner.so is present here: /usr/lib/xtables/libxt_owner.so along with all the other files. The installation is from Yocto: https://layers.openembedded.org/layerindex/recipe/300425/ On Thu, 25 Jul 2024 at 14:19, Florian Westphal <fw@xxxxxxxxx> wrote: > > Tom Isaacson <thomas.isaacson@xxxxxxxxxxxxxxxxxxxxx> wrote: > > > Sharing Internet using method: nat > > > iptables v1.8.7 (legacy): unknown option "--to-ports" > > > Try `iptables -h' or 'iptables --help' for more information. > > > Doing cleanup.. done > > Broken iptables installation. > > > > The offending iptables commands are: > > > iptables -w -t nat -D PREROUTING -s ${GATEWAY%.*}.0/24 -d > > > ${GATEWAY} \ > > > -p tcp -m tcp --dport 53 -j REDIRECT --to-ports $DNS_PORT > > > iptables -w -t nat -D PREROUTING -s ${GATEWAY%.*}.0/24 -d > > > ${GATEWAY} \ > > > -p udp -m udp --dport 53 -j REDIRECT --to-ports $DNS_PORT > > > > > > I searched around for a solution and found > > > https://urldefense.proofpoint.com/v2/url?u=https-3A__community.unix.com_t_iptables-2Dv1-2D8-2D7-2Dnf-2Dtables-2Dunknown-2Doption-2Dto-2Dports_385377_3&d=DwIBAg&c=q3cDpHe1hF8lXU5EFjNM_C93KOmcBXCBnhee2v6PYlc&r=MO7EWU3DamJNNM8h6vHmeK6CEry2ufcorA3OreLf9oSJJvfzyukEHrKjEuU65HDv&m=3pEifEeIBaWYzhy_9MSuLYFwj7s1hDnpv2ftIP8xg0VZA5QWqX6RKTC79F1ylozp&s=sBy-V0FVFtnFXyvzNpVWO6IaPMyAYTyauL9S5RRjQrk&e= > > This has all diagnostic commands that you'll need to figure out whats > happening. > > > > but this command also fails: > > > # iptables -A OUTPUT -m owner --uid 0 > > > iptables v1.8.7 (legacy): Couldn't load match `owner':No such file > > > or directory > > > > > > iptables links to xtables-legacy-multi but it seems to have all of the > > > necessary files present. > > iptables says it can't load match 'owner' (libxt_owner.so). > > So its either missing or iptables is searching the wrong location. > > strace should tell which directory iptables is searching to fetch > extensions. > > Some embedded distros split packages into subpackages to save space, > so it might be missing package too. -- *For more information on how and why we collect your personal information, please visit our Privacy Policy <https://www.motorolasolutions.com/en_us/about/privacy-policy.html?elqTrackId=8980d888905940e39a2613a7a3dcb0a7&elqaid=2786&elqat=2#privacystatement>.*
