系统之家

编译好新内核后

# iptables -t nat -nL 提示

iptables v1.3.5: can't initialize iptables table `nat': Table does not exist (do you need to insmod?)

Perhaps iptables or your kernel needs to be upgraded.

解决方法: 编译内核时加入以下模块

Linux Kernel Configuration

    -> Networking support

        -> Networkin [Read More…]

# vi /etc/syslog.conf 在最底行加入(Centos/Fedora/Redhat是/etc/syslog.conf , Debian/Ubuntu是/etc/rsyslog.conf)

这段代码作用是保存日志在 /var/log/firewall

# iptables -I INPUT -j LOG --log-prefix '［IPTABLES DROP LOGS］:' --log-level debug

重启下日志服务:

service syslog restart

( /etc/init.d/rsyslog restart ) [Read More…]

网上看到一张不错的iptables执行顺序,共享给大家一起学习. [Read More…]

wget http://mirrors.163.com/centos/5. ... .18-164.el5.src.rpm

wget http://ftp.netfilter.org/pub/pat ... ng-20091010.tar.bz2

wget http://www.netfilter.org/project ... ables-1.3.8.tar.bz2

# mkdir /usr/src/redhat/

# mkdir /usr/src/redhat/SOURCES

# groupadd mockbuild

# useradd mockbuild -g m [Read More…]