yep. it's a bug. As soon as I remove iptables from the kernel config, ipw2100,ieee80211_crypt_tkip, ieee80211_crypt_ccmp, ieee80211_crypt_wep, ieee80211 all show up fine in lsmod. no dmesg errors, and eth1 (wireless) shows up fine. Off to bugz to log this.
John D -----Original Message----- From: John Dangler [mailto:[EMAIL PROTECTED] Sent: Monday, August 29, 2005 11:36 PM To: gentoo-user@lists.gentoo.org Subject: RE: [gentoo-user] iptables ok. I got a clean kernel and removed iptables and firestarter. I then went into the kernel config and _only_ turned on iptable support as a module, and ran modules-update. all looks ok. Rebooting the kernel, however, I get this in dmesg - ipw2100: disagrees about version of symbol per_cpu__softnet_data ipw2100: no version for "ieee80211_get_crypto_ops" found: kernel tainted. (a whole lot of these messages listing what appears to be every symbol in the ipw2100 module)... then - ieee80211: disagrees about version of symbol per_cpu__softnet_data ieee80211: Unknown symbol per_cpu__softnet_data. (a whole lot of these messages listing what appears to be every symbol in the ieee80211 module)... then - ieee80211_crypt_wep: disagrees about version of symbol ___pskb_trim ieee80211_crypt_wep: Unknown symbol ___pskb_trim. (a whole lot of these messages listing what appears to be every symbol in the ieee80211_crypt_wep module)... It appears that the version of ipw2100 and/or ieee80211 in portage (stable) clashes with the version of iptables in portage (stable). So, either I can have wireless or security... John D -----Original Message----- From: John Dangler [mailto:[EMAIL PROTECTED] Sent: Monday, August 29, 2005 10:36 PM To: gentoo-user@lists.gentoo.org Subject: RE: [gentoo-user] iptables Holly~ The Firestarter kernel requirements doc says - *Device drivers *Networking support [y] *Networking support *Networking options *Network packet filtering [y] *Network packet filtering IP: Netfilter Configuration (*) "We recommend you enable _everything_ except ipchains support and ipfwadm support as modules under this menu" In case I did something out to bork this myself, I'm going to unmerge firestarter and iptables, rebuild the kernel into the state it was before this started (genkernel --kernel-config=my.old.config all), emerge iptables (instead of letting firestarter emerge do it), make sure that iptables loads up ok, then emerge firestarter and configure it. That way, I can be sure that it's not me just getting in a hurry to install a package... John Dangler GenoFit 800-505-4078 (Corporate) 386-767-3730 (Direct) 866-273-0408 (Fax) www.genofit.com [EMAIL PROTECTED] -----Original Message----- From: Holly Bostick [mailto:[EMAIL PROTECTED] Sent: Monday, August 29, 2005 9:32 PM To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] iptables John Dangler schreef: > I emerged firestarter (during which I got iptables), and forgot that I > didn't have iptables emerged prior. I went into the kernel and selected (as > the doc I found suggests) Oh, John, to hell with "the doc you found" (which look to be from the Wiki). No offense to the wiki (or to you), but you're really overcomplicating this. You're probably better off with the Firestarter docs found here http://www.fs-security.com/docs/kernel.php which are complete, and clear, and designed to work with the Firestarter front end.... you know, "official docs"...? :) Holly -- gentoo-user@gentoo.org mailing list -- gentoo-user@gentoo.org mailing list -- gentoo-user@gentoo.org mailing list -- gentoo-user@gentoo.org mailing list
