https://bugzilla.novell.com/show_bug.cgi?id=373469 User cfarrell@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=373469#c2 Summary: SuSEfirewall2/iptables problem on openSUSE 10.3 as guest on vserver Product: openSUSE 10.3 Version: Final Platform: Other OS/Version: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security AssignedTo: lnussel@novell.com ReportedBy: cfarrell@novell.com QAContact: qa@suse.de Found By: --- I tried out openSUSE 10.3 stock minimal (64bit and 32bit) on a vserver using 2.6.20-xen rc6. The SuSEfirewall2 has problems when starting with rcSuSEfirewall2 start: vadmin526:~ # rcSuSEfirewall2 start Starting Firewall Initialization (phase 2 of 2) SuSEfirewall2: Warning: ip6tables does not support state matching. Extended IPv6 support disabled. FATAL: Module ip_conntrack not found. iptables-batch v1.3.8: can't initialize iptables table `nat': Table does not exist (do you need to insmod?) Perhaps iptables or your kernel needs to be upgraded. SuSEfirewall2: Error: iptables-batch failed, re-running using iptables iptables v1.3.8: can't initialize iptables table `nat': Table does not exist (do you need to insmod?) Perhaps iptables or your kernel needs to be upgraded. iptables v1.3.8: can't initialize iptables table `nat': Table does not exist (do you need to insmod?) Perhaps iptables or your kernel needs to be upgraded. iptables: No chain/target/match by that name iptables: No chain/target/match by that name iptables: No chain/target/match by that name iptables: No chain/target/match by that name done vadmin526:~ # rcSuSEfirewall2 stop Shutting down the Firewall SuSEfirewall2: Warning: ip6tables does not support state matching. Extended IPv6 support disabled. iptables-batch v1.3.8: can't initialize iptables table `nat': Table does not exist (do you need to insmod?) Perhaps iptables or your kernel needs to be upgraded. SuSEfirewall2: Error: iptables-batch failed, re-running using iptables iptables v1.3.8: can't initialize iptables table `nat': Table does not exist (do you need to insmod?) Perhaps iptables or your kernel needs to be upgraded. iptables v1.3.8: can't initialize iptables table `nat': Table does not exist (do you need to insmod?) Perhaps iptables or your kernel needs to be upgraded. http://forums.suselinuxsupport.de/index.php?showtopic=65687 told me that I should either recompile the kernel or write a bug report here... I chose the latter. Btw, I am not sure that this is a security issue, so please reassign it if necessary. vadmin526:~ # uname -a Linux vadmin526 2.6.20-xen-r6 #2 SMP Tue Mar 11 21:58:58 CET 2008 x86_64 x86_64 x86_64 GNU/Linux vadmin526:~ # rpm -qa | grep iptables iptables-1.3.8-28 vadmin526:~ # rpm -qa | grep SuSEfirewall2 SuSEfirewall2-3.6_SVNr183-10 done -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.