On Sat, Apr 17, 2004 at 07:44:23AM +0200, Bruno Ducrot wrote: > > I ended up going with with debian 32 bit with a 64 bit monolithic > > kernel, but now iptables will not work. I'm building a chroot with > > iptables in it and will finangle some init script for the firewall. Is > > there any way to manipulate a 64 bit netfilter without this chroot being > > built? > > > > I don't think it's possible right now. > > Look at Andi post to lkml: > http://marc.theaimsgroup.com/?l=linux-kernel&m=108135503924102&w=2 > > Eventually you should be able to use the ipchains compatibility stuff > though if I understand that post correctly. > After reading that post, I found hope in this portion: "Maybe it would be still possible to write an emulation layer, but easier is it to just use static 64bit executables or hacked 32bit executables." Is there a way to make these 'hacked 32 bit executables' with compiler options? Should I just be working on my chroot run scripts? I've decided the best way to run a production system is to start a daemontools service manager in a chroot and have it manage starting/stopping/logging on the 64 bit services. Anyone tried this setup? -- TJ Vanderpoel GCIA,GCIH tj@theitspecialists.net
Attachment:
signature.asc
Description: Digital signature