11-06-2009, 03:34 PM
i seem to be running into a problem with iptables when i compile my own kernel on centos5.
first off, i know i am using iptables correctly, because it works as it should when i am on the default centos kernel which I believe is 2.6.18.
when i compile my custom kernel, i copy the config from /boot/config-2.6.18...etc and then make the performance changes to the kernel config. i do not disable anything under network options > netfilter, that is all left how it is in the default kernel config.
i've tried this on probably half a dozen boxes, and various kernel versions, all with the same results. i am almost blaming centos because i don't know what else it could be.
anyways, this is what happens...
same rules...
on default kernel: ssh, ftp, game servers all go online correctly and allow normal operation
on custom kernel: ssh works, but ftp and game servers do not. when i attempt to start the game server it just sits idle at "Executing dedicated server config file" or something like that. it's almost like the custom kernel does not listen to the iptables rules. it's quite obvious the firewall is working because it doesn't allow anything to function properly, or icmp (ping) requests, but it just doesn't listen to the rules i give it (the same rules used on the default kernel with success)
i am experimenting with different distros locally, such as debian, fedora etc, but i thought i would see if anyone knows a solution to this so i wouldn't have to switch my box to another distro.
thank you
first off, i know i am using iptables correctly, because it works as it should when i am on the default centos kernel which I believe is 2.6.18.
when i compile my custom kernel, i copy the config from /boot/config-2.6.18...etc and then make the performance changes to the kernel config. i do not disable anything under network options > netfilter, that is all left how it is in the default kernel config.
i've tried this on probably half a dozen boxes, and various kernel versions, all with the same results. i am almost blaming centos because i don't know what else it could be.
anyways, this is what happens...
same rules...
on default kernel: ssh, ftp, game servers all go online correctly and allow normal operation
on custom kernel: ssh works, but ftp and game servers do not. when i attempt to start the game server it just sits idle at "Executing dedicated server config file" or something like that. it's almost like the custom kernel does not listen to the iptables rules. it's quite obvious the firewall is working because it doesn't allow anything to function properly, or icmp (ping) requests, but it just doesn't listen to the rules i give it (the same rules used on the default kernel with success)
i am experimenting with different distros locally, such as debian, fedora etc, but i thought i would see if anyone knows a solution to this so i wouldn't have to switch my box to another distro.
thank you
