Phil Dibowitz wrote:
On Wed, Feb 27, 2008 at 07:29:24AM -0500, Steve Clark wrote:
Ross Cameron wrote:
Anyone recently compiled and used IP-Filter on a LFS/Slackware box?
Would love to chat to you about how u got it working.
Me too - on any of the later 2.6.20+ versions.
Since 2.6 kernels are known to work, you'll get a better response by
posting specific problems you've run into.
mkdir -p net netinet
if [ ! -f netinet/done ] ; then \
(cd netinet; ln -s ../*.h .; ln -s ../ip_*_pxy.c .;); \
(cd netinet; ln -s ../ipsend/tcpip.h tcpip.h); \
touch netinet/done; \
fi
(cd netinet; ln -s ../ip_rules.h ip_rules.h)
ln: creating symbolic link `ip_rules.h': File exists
make: [include] Error 1 (ignored)
if [ ! -f net/done ] ; then \
(cd net; ln -s ../radix_ipf.h .; ); \
touch net/done; \
fi
(cd Linux; make build LINUX=`uname -r | awk -F. ' {
printf"%d",$1;for(i=1;i<NF&&i<3;i++){printf("%02d",$(i+1));}}'` TOP=..
"DEBUG=-g" "CC=cc" 'CFLAGS=-I$(TOP) -D_BSD_SOURCE '
"IPFLOG=-DIPFILTER_LOG" "LOGFAC=-DLOGFAC=LOG_LOCAL0"
"POLICY=-DIPF_DEFAULT_PASS=FR_PASS" "SOLARIS2=" "DEBUG=-g"
"DCPU=`uname -m`" "LIBBPF=" "CPUDIR=`uname -s|sed -e 's@/@@g'`-`uname
-r`-`uname -m`" "IPFBPF=" 'STATETOP_CFLAGS=' "BPFILTER="
'STATETOP_INC=' 'STATETOP_LIB=' "BITS=" "OBJ=."
"LOOKUP=-DIPFILTER_LOOKUP -DIPFILTER_SCAN" "COMPIPF=" 'SYNC='
'ALLOPTS=-DIPFILTER_LOG -DIPFILTER_LOOKUP -DIPFILTER_SCAN
-DIPFILTER_SYNC -DIPFILTER_CKSUM' 'LIBBPF=' "IPFLKM=-DIPFILTER_LKM"
OBJ=`uname -s|sed -e 's@/@@g'`-`uname -r`-`uname -m`
LINUXKERNEL=/usr/src/linux; cd ..)
make[1]: Entering directory `/root/ip_fil4.1.28/Linux'
cc -I. -ILinux-2.6.23.15-137.fc8-i686 -g -I.. -D_BSD_SOURCE
-DIPFILTER_LOOKUP -DIPFILTER_SCAN -DIPFILTER_LOG -DLINUX=20623 -c
../tools/ipf.c -o Linux-2.6.23.15-137.fc8-i686/ipf.o
In file included from ../ipf.h:69,
from ../tools/ipf.c:15:
../netinet/ip_compat.h:1124:26: error: linux/config.h: No such file or
directory
make[1]: *** [Linux-2.6.23.15-137.fc8-i686/ipf.o] Error 1
make[1]: Leaving directory `/root/ip_fil4.1.28/Linux'
(cd Linux; make ipflkm LINUX=`uname -r | awk -F. ' {
printf"%d",$1;for(i=1;i<NF&&i<3;i++){printf("%02d",$(i+1));}}'` TOP=..
"DEBUG=-g" "CC=cc" 'CFLAGS=-I$(TOP) -D_BSD_SOURCE '
"IPFLOG=-DIPFILTER_LOG" "LOGFAC=-DLOGFAC=LOG_LOCAL0"
"POLICY=-DIPF_DEFAULT_PASS=FR_PASS" "SOLARIS2=" "DEBUG=-g"
"DCPU=`uname -m`" "LIBBPF=" "CPUDIR=`uname -s|sed -e 's@/@@g'`-`uname
-r`-`uname -m`" "IPFBPF=" 'STATETOP_CFLAGS=' "BPFILTER="
'STATETOP_INC=' 'STATETOP_LIB=' "BITS=" "OBJ=."
"LOOKUP=-DIPFILTER_LOOKUP -DIPFILTER_SCAN" "COMPIPF=" 'SYNC='
'ALLOPTS=-DIPFILTER_LOG -DIPFILTER_LOOKUP -DIPFILTER_SCAN
-DIPFILTER_SYNC -DIPFILTER_CKSUM' 'LIBBPF=' "IPFLKM=-DIPFILTER_LKM"
OBJ=`uname -s|sed -e 's@/@@g'`-`uname -r`-`uname -m`
LINUXKERNEL=/usr/src/linux WORKDIR=`pwd`; cd ..)
make[1]: Entering directory `/root/ip_fil4.1.28/Linux'
if [ 20623 -lt 20499 ] ; then \
make Linux-2.6.23.15-137.fc8-i686/ipfilter.o; \
else \
(cd Linux-2.6.23.15-137.fc8-i686; unset MAKEFLAGS;
make -C "/lib/modules/2.6.23.15-137.fc8/build" SUBDIRS="`pwd`"
TOP="`pwd`/../.." CPUDIR="Linux-2.6.23.15-137.fc8-i686"
EXTRA_CFLAGS="-DLINUX=20623 -I.. -I`pwd`/.. -I`pwd`/../..
-DIPFILTER_LOOKUP -DIPFILTER_SCAN -DIPFILTER_LOG -O2" OBJ= modules); \
fi
make[2]: Entering directory `/usr/src/kernels/2.6.23.15-137.fc8-i686'
CC [M] /root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.o
In file included from
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:2:
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../ipf-linux.h:4:26:
error: linux/config.h: No such file or directory
In file included from
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../ipf-linux.h:158,
from
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:2:
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../../ip_compat.h:37:5:
warning: "SOLARIS2" is not defined
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../../ip_compat.h:1579:5:
warning: "BSD" is not defined
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../../ip_compat.h:1615:7:
warning: "BSD" is not defined
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../../ip_compat.h:1849:6:
warning: "BSD" is not defined
In file included from
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../ipf-linux.h:159,
from
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:2:
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../../ip_fil.h:1342:9:
warning: "_BSDI_VERSION" is not defined
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../../ip_fil.h:1342:38:
warning: "__FreeBSD_version" is not defined
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../../ip_fil.h:1343:8:
warning: "NetBSD" is not defined
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../../ip_fil.h:1392:8:
warning: "BSD" is not defined
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../../ip_fil.h:1447:7:
warning: "__FreeBSD_version" is not defined
In file included from
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../ipf-linux.h:164,
from
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:2:
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../../ip_frag.h:90:31:
warning: "BSD" is not defined
In file included from
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../../ip_pool.h:25,
from
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../ipf-linux.h:167,
from
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:2:
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686/../../radix_ipf.h:164:43:
warning: "IRIX" is not defined
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:3:35:
error: linux/devfs_fs_kernel.h: No such file or directory
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:17:
error: expected ')' before string constant
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:18:
error: expected ')' before string constant
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:19:
error: expected ')' before string constant
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:20:
error: expected ')' before string constant
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:21:
error: expected ')' before string constant
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:22:
error: expected ')' before string constant
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:23:
error: expected ')' before string constant
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:24:
error: expected ')' before string constant
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:25:
error: expected ')' before string constant
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:172:
error: expected declaration specifiers or '...' before 'poll_table'
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:173:
error: conflicting types for 'ipf_poll'
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:31:
error: previous declaration of 'ipf_poll' was here
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c: In
function 'ipf_poll':
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:184:
error: implicit declaration of function 'poll_wait'
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:184:
error: 'wait' undeclared (first use in this function)
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:184:
error: (Each undeclared identifier is reported only once
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:184:
error: for each function it appears in.)
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:193:
error: 'POLLIN' undeclared (first use in this function)
/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.c:193:
error: 'POLLRDNORM' undeclared (first use in this function)
make[3]: ***
[/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686//linuxm.o] Error 1
make[2]: ***
[_module_/root/ip_fil4.1.28/Linux/Linux-2.6.23.15-137.fc8-i686] Error 2
make[2]: Leaving directory `/usr/src/kernels/2.6.23.15-137.fc8-i686'
make[1]: *** [ipflkm] Error 2
make[1]: Leaving directory `/root/ip_fil4.1.28/Linux'
