Re: iptables wrong version?

To: debian-user@lists.debian.org
Subject: Re: iptables wrong version?
From: Dennis Stosberg <lists@stosberg.net>
Date: Mon, 13 Mar 2006 13:56:09 +0100
Message-id: <[🔎] 20060313125609.G1be0b5f8@leonov.stosberg.net>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 20060312015255.GR28126@lina.aaanime.net>
References: <[🔎] 20060312015255.GR28126@lina.aaanime.net>

Philip Mak wrote:

> [root@naga root]# iptables -A INPUT --source *.*.*.* -p tcp -j DROP       
> iptables v1.2.11: can't initialize iptables table `filter': Module is wrong version
> Perhaps iptables or your kernel needs to be upgraded.
> [root@naga root]# uname -a
> Linux naga.aaanime.net 2.6.8-11-amd64-k8 #1 Sun Oct 2 21:26:54 UTC 2005 x86_64 GNU/Linux

You're running i386 userspace on an x86_64 kernel.  Since that
kernel provides 32-bit binary compatibility for userspace and most
kernel interfaces, this is generally working quite well.

But there are a few points which require manual tweaking.  Iptables
is one of them.  A i386 iptables simply won't work on a x86_64
kernel, because there is no 32-bit compatibility interface for
iptables.  So all you need is a 64-bit iptables binary.

You can manually install the amd64 iptables package on Sarge with
"dpkg --force-architecture".  Also, you have to make sure that you
have a compatible 64-bit libc, for example from the amd64-libs
package.

Regards,
Dennis

Reply to:

References:
- iptables wrong version?
  - From: Philip Mak <pmak@aaanime.net>

Prev by Date: KPPP and PPP dial in SOLVED! ;-)
Next by Date: Re: What can't CUPS start up?
Previous by thread: Re: iptables wrong version?
Next by thread: MAILTO=/dev/null
Index(es):
- Date
- Thread