firewalling and Sun Netra (UltraSparc) and iptables extensions

Mike Waychison mike-DlQxw/23Tq2aMJb+Lgu22Q at public.gmane.org
Wed Oct 6 22:30:02 UTC 2004


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Ilya Palagin wrote:
> Hi,
> 
> We've got some Netra's and are going to use them for services like DNS,
> firewalling, etc.  I've installed Debian on it, it works just great!  The only
> problem is that 64bit UltraSparc linux kernel doesn't seem to support some
> extensions for firewalling, like 'limit'.  Here is an example:
> 
> 
>>iptables -A INPUT -m limit --limit 3600/hour --limit-burst 20 -j LOG
> 
> iptables: Invalid argument
> 
> I've installed the latest 2.4 and 2.6 kernels from Debian testing, the same
> problem. The reason for that is:
> 
> "... because these  32-bit system call translation layer needs to translate the
> iptables entry structures for certain iptables targets..."
> 
> It was posted one year ago.  Does anyone have a positive result for those
> extension on Sparc since then?  This issue isn't a big deal, filtering and NAT
> are working well, but I need to setup a "pre-built" firewall with web interface
> for those who has no experience with iptables, all those applications use limits.
> 
> Thanks,
> Ilya.
> 

Have you tried re-compiling iptables as a 64-bit target?
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFBZHFXdQs4kOxk3/MRAu+cAJ95K6cT6rSMc+/Du84EMpmfwwOshgCeJWDU
tqa+jeGmVI+AIf4c5Q5m2hw=
=kTjt
-----END PGP SIGNATURE-----
--
The Toronto Linux Users Group.      Meetings: http://tlug.ss.org
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml





More information about the Legacy mailing list