[Voyage-linux] Question - iptables cannot remove a rule ("bad rule" error) - possible bug?

Marcus Scholz (spam-protected)
Mon Oct 11 21:37:48 HKT 2010 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Am 11.10.2010 10:15, schrieb Kim-man 'Punky' TSE:
>  Hi Lukas,
> 
> This seems strange, Voyage and Debian Lenny use the same versions
> (1.4.2) of iptables.  The debian lenny can remove rules without the
> rules numbers but Voyage cannot.  One possible reason is the different
> in kernel version.

I would suspect the kernel configuration, the netfilter part

mfG
Commander1024
> 
> Regards,
> Punky
> 
> On 10/11/2010 4:05 PM, Lukáš Pecha wrote:
>> ----------
>> Sorry, I'm posting it again - last message was somehow corrupted.
>> ----------
>>
>> Hi Punky,
>>
>>   Yes, that's working. But the other way should be working too and is
>> working on other systems. It's also in man pages of iptables:
>>
>>   -D, --delete chain rule-specification -D, --delete chain rulenum
>> Delete one or more rules from the selected chain. There are two
>> versions of this command: the rule can be specified as a number in the
>> chain (starting at 1 for the first rule) or a rule to match. How can I
>> use Shorewall on Voyage linux then? I don't think, that I can somehow
>> force Shorewall to use rule numbers instead of rule specification...
>>   ssdsa
>>
>>   Lukas
>>
>>   ----------------------------
>>   Hi Lukas,
>>
>>   You need to put a rule number when delete a rule, see iptables -h
>>
>>   iptables -D chain rulenum [options]
>>
>>   - Punky
>>
>>   On 10/11/2010 1:32 PM, Lukáš Pecha wrote:
>>   >  Hi,
>>   >
>>   >  I've recently installed Voyage 0.6.5 on my Alix board and when I
>> started to configure Shorewall, I ran into an error>  with iptables.
>>   >
>>   >  Shorewall start ends when it tries to remove rule "/sbin/iptables
>> -D INPUT -m state --state ESTABLISHED,RELATED -j>  ACCEPT". It just
>> says "Bad rule (does a matching rule exist in that chain?)".
>>   >
>>   >  I cleared up the iptables and tried to add the same rule and then
>> remove it manually - it did the same thing again, so>  it's not
>> Shorewall, but something with iptables. It's working fine on my other
>> linux box (opensuse). Somehow, iptables>  don't find the rule, which I
>> want to remove.
>>   >
>>   >  I have kernel version 2.6.30-voyage #1 PREEMPT, shorewall 4.0.15
>> and iptables 1.4.2 on my Voyage installation.
>>   >
>>   >  Does anyone know what to do with it or do you need more
>> information (if yes, what kind of information do you need)?
>>   >
>>   >  Thanks in advance,
>>   >  Lukas
>>   >
>>   >  _______________________________________________
>>   >  Voyage-linux mailing list
>>   >  Voyage-linux at list.voyage.hk
>>   >  http://list.voyage.hk/mailman/listinfo/voyage-linux
>>
>>
>>   -- Regards,
>>   Punky
>>
>>   Voyage Solutions (http://solution.voyage.hk)
>>   * Embedded Solutions and Systems
>>   - Mesh Networking, Captive Portal, IP Surveillance, VoIP/PBX
>>   - Network Engineering, Development Platform and Consultation
>>
>> _______________________________________________
>> Voyage-linux mailing list
>> Voyage-linux at list.voyage.hk
>> http://list.voyage.hk/mailman/listinfo/voyage-linux
> 
> 

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org/

iQEcBAEBAgAGBQJMsxMrAAoJEESzYGUfVKgiaV0IAKHeYwSY7FhDhxYBgsoh+ejx
bX7AkgWs4lzSIQcc/tKbznIonAptQkCReDynwpDhCy0wjbl4z29iB46ikdPsoOUi
t8BQN14hbtH8w05X5R0JtdXkP6fDNNs4eNAyLdFVhjtBEPw8Ty+C3EaHxsPeFR4o
hVmwrgmEOv9ICifqlVxQHvfR6CcSSVyoqt6Jcq3xDfiPrrRqevd/6kaaA6W/+kja
+lnaD7qs4zBTnUvPi1oISPZT+dP2BLacr/k36lMLUsn42lvc4oR+gLM38DBzpjHo
cO0fLCOTSxPGhuoVNV5D72UJuemwfKl2ZdcicH9Y3C1jTz/DyJQTV6ZF78/JYLA=
=Y9W6
-----END PGP SIGNATURE-----

More information about the Voyage-linux mailing list