[gentoo-user] Problem with iptables logging (iptables: No chain/target/match by that name.)

public inbox for gentoo-user@lists.gentoo.org
 help / color / mirror / Atom feed

* [gentoo-user] Problem with iptables logging (iptables: No chain/target/match by that name.)
@ 2013-05-04 16:41 Nick Khamis
  2013-05-04 16:55 ` Tanstaafl
  0 siblings, 1 reply; 3+ messages in thread
From: Nick Khamis @ 2013-05-04 16:41 UTC (permalink / raw
  To: gentoo-user

Hello Everyone,

While trying to include a logging chain to our IPTables rules, I am
receiving the following
error: (iptables: No chain/target/match by that name.

The chain looks like:

# Set Log Limit
LOGLIMIT="2/s"
LOGLIMITBURST="10"

$IPTABLES -N LOGDROP

#echo -e "       - Logging Dropped Traffic"
# $IPTABLES -A LOGDROP -i $INTIF1 -p tcp -m limit --limit $LOGLIMIT
--limit-burst $LOGLIMITBURST -j LOG --log-prefix "TCP LOGDROP: "

# $IPTABLES -A LOGDROP -j DROP
# $IPTABLES -A INPUT -p icmp -i $INTIF1 -j LOGDROP
# $IPTABLES -A INPUT -p tcp  -i $INTIF1 -j LOGDROP
# $IPTABLES -A INPUT -p udp  -i $INTIF1 -j LOGDROP

Some searching caused me to make sure that I have the correct modules loaded:

modprobe ipt_LOG

Module                  Size  Used by
iptable_nat             3220  0
nf_nat                 11228  1 iptable_nat
ipt_LOG                 6454  0
ipt_REJECT              1917  3
nf_conntrack_ipv4       9141  10 nf_nat,iptable_nat
nf_defrag_ipv4           847  1 nf_conntrack_ipv4
iptable_filter           988  1
ip_tables               8370  2 iptable_filter,iptable_nat


But still no go.

Thank in Advance,

Nick.


^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: [gentoo-user] Problem with iptables logging (iptables: No chain/target/match by that name.)
  2013-05-04 16:41 [gentoo-user] Problem with iptables logging (iptables: No chain/target/match by that name.) Nick Khamis
@ 2013-05-04 16:55 ` Tanstaafl
  2013-05-04 17:06   ` Nick Khamis
  0 siblings, 1 reply; 3+ messages in thread
From: Tanstaafl @ 2013-05-04 16:55 UTC (permalink / raw
  To: gentoo-user

On 2013-05-04 12:41 PM, Nick Khamis <symack@gmail.com> wrote:
> Some searching caused me to make sure that I have the correct modules loaded:
>
> modprobe ipt_LOG
>
> Module                  Size  Used by
> iptable_nat             3220  0
> nf_nat                 11228  1 iptable_nat
> ipt_LOG                 6454  0
> ipt_REJECT              1917  3
> nf_conntrack_ipv4       9141  10 nf_nat,iptable_nat
> nf_defrag_ipv4           847  1 nf_conntrack_ipv4
> iptable_filter           988  1
> ip_tables               8370  2 iptable_filter,iptable_nat

What kernel version?

I had the same problem after an update to 3.7.10, had to enable some new 
options:

CONFIG_NETFILTER_NETLINK_LOG=y
CONFIG_NETFILTER_XT_TARGET_LOG=y
CONFIG_IP_NF_TARGET_ULOG=y

Not sure if they are all needed though...


^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: [gentoo-user] Problem with iptables logging (iptables: No chain/target/match by that name.)
  2013-05-04 16:55 ` Tanstaafl
@ 2013-05-04 17:06   ` Nick Khamis
  0 siblings, 0 replies; 3+ messages in thread
From: Nick Khamis @ 2013-05-04 17:06 UTC (permalink / raw
  To: gentoo-user

We are using 3.3.8. I did see those in the kernel list. Anyone have
any idea which
ones are needed?

Thanks in Advance,

N.

On 5/4/13, Tanstaafl <tanstaafl@libertytrek.org> wrote:
> On 2013-05-04 12:41 PM, Nick Khamis <symack@gmail.com> wrote:
>> Some searching caused me to make sure that I have the correct modules
>> loaded:
>>
>> modprobe ipt_LOG
>>
>> Module                  Size  Used by
>> iptable_nat             3220  0
>> nf_nat                 11228  1 iptable_nat
>> ipt_LOG                 6454  0
>> ipt_REJECT              1917  3
>> nf_conntrack_ipv4       9141  10 nf_nat,iptable_nat
>> nf_defrag_ipv4           847  1 nf_conntrack_ipv4
>> iptable_filter           988  1
>> ip_tables               8370  2 iptable_filter,iptable_nat
>
> What kernel version?
>
> I had the same problem after an update to 3.7.10, had to enable some new
> options:
>
> CONFIG_NETFILTER_NETLINK_LOG=y
> CONFIG_NETFILTER_XT_TARGET_LOG=y
> CONFIG_IP_NF_TARGET_ULOG=y
>
> Not sure if they are all needed though...
>
>


^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2013-05-04 17:06 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2013-05-04 16:41 [gentoo-user] Problem with iptables logging (iptables: No chain/target/match by that name.) Nick Khamis
2013-05-04 16:55 ` Tanstaafl
2013-05-04 17:06   ` Nick Khamis

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox