All pastes #39939 Raw Edit

Anonymous

public text v1 · immutable
#39939 ·published 2006-02-04 11:58 UTC
rendered paste body
Install Debian

/etc/init.d/sshd start
apt-get install joe screen bzip2 ncurses-dev kernel-package
wget  http://www.kernel.org/pub/linux/kernel/v2.6/linux-2.6.15.2.tar.bz2
cd /usr/src/
tar jxvf /usr/local/src/linux-2.6.15.2.tar.bz2
wget http://belnet.dl.sourceforge.net/sourceforge/l7-filter/netfilter-layer7-v2.1.tar.gz
tar zxvf netfilter-layer7-v2.1.tar.gz
cd /usr/src/linux-2.6.15.2
patch -p1 < /usr/local/src/netfilter-layer7-v2.1/kernel-2.6.13-2.6.15-layer7-2.1.patch    
cp /boot/config-2.6.8-2-686 /usr/src/linux-2.6.15.2/.config
make menuconfig

New Kernel Options:
Networking--> Networking Options -->   Network packet filtering (replaces ipchains)  --->                  IP: Netfilter Configuration  --->       
Connection tracking flow accounting                            
Connection mark tracking support
Layer 7 match support (EXPERIMENTAL) (as Module)
CONNMARK target support  
Connection mark match support

make-kpkg clean
make-kpkg -initrd kernel_image
make-kpkg kernel_headers 
dpkg -i kernel-headers-2.6.15.2_10.00.Custom_i386.deb
dpkg -i kernel-image-2.6.15.2_10.00.Custom_i386.deb

reboot

apt-get remove iptables
wget http://www.netfilter.org/projects/iptables/files/iptables-1.3.5.tar.bz2
tar jxvf iptables-1.35.tar.bz2 
wget http://ftp.netfilter.org/pub/patch-o-matic-ng/snapshot/patch-o-matic-ng-20060131.tar.bz2
tar jxvf patch-o-matic-ng-20060131.tar.bz2 
KERNEL_DIR=/usr/src/linux/ IPTABLES_DIR=/usr/local/src/iptables-1.3.5/ ./runme base
cd /usr/local/src/iptables-1.3.5
patch -p1 < /usr/local/src/netfilter-layer7-v2.1/iptables-layer7-2.1.patch
chmod +x extensions/.layer7-test
Makefile:
KERNEL_DIR=/usr/src/linux
LIBDIR:=/lib
BINDIR:=/sbin
MANDIR:=/usr/share/man

make
make install

Recompile and install the kernel:
make menuconfig
make-kpkg clean
make-kpkg -initrd kernel_image kernel_headers 
dpkg -i kernel-headers-2.6.15.2_10.00.Custom_i386.deb
dpkg -i kernel-image-2.6.15.2_10.00.Custom_i386.deb

reboot

wget http://www.ipp2p.org/downloads/ipp2p-0.8.0.tar.gz
I edit the Makefile

KERNEL_SRC = /usr/src/linux-2.6.15.2
IPTABLES_SRC = /usr/local/src/iptables-1.3.5
IPTABLES_BIN = /sbin/iptables

make
cp /usr/local/src/ipp2p-0.8.0/libipt_ipp2p.so /lib/iptables/
/sbin/insmod ipt_ipp2p.ko
But after that I get this error:

supergestor:/usr/local/src/ipp2p-0.8.0# insmod ipt_ipp2p.ko
insmod: error inserting 'ipt_ipp2p.ko': -1 Unknown symbol in module

And after that I have realised that I don't have any iptables module loaded:

supergestor:/usr/local/src/ipp2p-0.8.0# lsmod | grep ip
ipv6                  277664  10
supergestor: