|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [Xen-users] XCP antispoof
I've been trying to emulate the Xen antispoof features in XCP. This requires the xt_physdev iptables extension. Here's what I've done: 1. Downloaded the XCP DDK VM and installed it 2. Downloaded the Dom0 kernel sources from http://www.xen.org/files/XenCloud/Software/latest/sources/source-1.iso to a running DDK VM instance 3. make menuconfig inside the kernel sources and enable physdev inside Networking->Network Packet Filtering->Core Netfilter Configuration->physdev match support 4. make modules modules_install inside the kernel sources 5. Copy resulting xt_physdev.ko to dom0 6. insmod results in an error: insmod ./xt_physdev.ko insmod: error inserting './xt_physdev.ko': -1 Unknown symbol in module dmesg shows the error to be: xt_physdev: disagrees about version of symbol xt_register_matches xt_physdev: Unknown symbol xt_register_matches Modinfo reports the correct version: # modinfo xt_physdev.ko filename: xt_physdev.ko alias: ip6t_physdev alias: ipt_physdev description: Xtables: Bridge physical device match author: Bart De Schuymer <bdschuym@xxxxxxxxxx> license: GPL srcversion: 4D030E98D0F909D8DA92F33 depends: x_tables supported: yes vermagic: 2.6.27.42-0.1.1.xs0.1.1.737.1065xen SMP mod_unload modversions Xen 686 It seems that it requires a complete kernel rebuild and re-install. Can anybody confirm this or help me with an alternate way of building required iptables extensions? Thanks -- C V _______________________________________________ Xen-users mailing list Xen-users@xxxxxxxxxxxxxxxxxxx http://lists.xensource.com/xen-users
|
 |
Lists.xenproject.org is hosted with RackSpace, monitoring our |