Xen project Mailing List

Re: [Xen-users] XCP antispoof

To: Jorge Armando Medina <jmedina@xxxxxxxxxxxxxxx>, xen-users@xxxxxxxxxxxxxxxxxxx

Date: Mon, 10 May 2010 12:46:46 -0700 (PDT)

Cc:

Delivery-date: Mon, 10 May 2010 12:48:15 -0700

Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=2qU1DV8JwdA7/OvPwIEaNHgi1SSKkcuFKDQcjpaqbvAvoRB3ZEwh0J9B5VIhs3tS3ekcCfW4n7px5HzujUWUsHsnHYyDKJkoOkF2MK6/rj6YfBavdTS024ciifT9W47vvjzymoxd70dMkK05PgD4yXi2Yx7KTwmOdfgUgGGqeE0=;

List-id: Xen user discussion <xen-users.lists.xensource.com>

Thanks I got the xt_physdev.ko from /lib/modules/ inside the DDK VM and copied it to dom0 /lib/modules/... I ran depmod inside dom0 and modprobe xt_physdev in dom0 results in the same problem. ----- Original Message ---- From: Jorge Armando Medina <jmedina@xxxxxxxxxxxxxxx> To: xen-users@xxxxxxxxxxxxxxxxxxx Sent: Mon, May 10, 2010 12:03:46 PM Subject: Re: [Xen-users] XCP antispoof C V wrote: > I've been trying to emulate the Xen antispoof features in XCP. This requires > the xt_physdev iptables extension. Here's what I've done: > 1. Downloaded the XCP DDK VM and installed it > 2. Downloaded the Dom0 kernel sources from > http://www.xen.org/files/XenCloud/Software/latest/sources/source-1.iso to a > running DDK VM instance > 3. make menuconfig inside the kernel sources and enable physdev inside > Networking->Network Packet Filtering->Core Netfilter Configuration->physdev > match support > 4. make modules modules_install inside the kernel sources > 5. Copy resulting xt_physdev.ko to dom0 > I think step 4 will copy the modulo in /lib/modules/kern-version/.. > 6. insmod results in an error: > insmod ./xt_physdev.ko > insmod: error inserting './xt_physdev.ko': -1 Unknown symbol in module > Did you depmod after installing the modules? > dmesg shows the error to be: > xt_physdev: disagrees about version of symbol xt_register_matches > xt_physdev: Unknown symbol xt_register_matches > Modinfo reports the correct version: > # modinfo xt_physdev.ko > filename: xt_physdev.ko > alias: ip6t_physdev > alias: ipt_physdev > description: Xtables: Bridge physical device match > author: Bart De Schuymer <bdschuym@xxxxxxxxxx> > license: GPL > srcversion: 4D030E98D0F909D8DA92F33 > depends: x_tables > supported: yes > vermagic: 2.6.27.42-0.1.1.xs0.1.1.737.1065xen SMP mod_unload > modversions Xen 686 > > > It seems that it requires a complete kernel rebuild and re-install. Can > anybody confirm this or help me with an alternate way of building required > iptables extensions? > > Thanks > -- > C V > > > _______________________________________________ > Xen-users mailing list > Xen-users@xxxxxxxxxxxxxxxxxxx > http://lists.xensource.com/xen-users > -- Jorge Armando Medina Computación Gráfica de México Web: http://www.e-compugraf.com Tel: 55 51 40 72, Ext: 124 Email: jmedina@xxxxxxxxxxxxxxx GPG Key: 1024D/28E40632 2007-07-26 GPG Fingerprint: 59E2 0C7C F128 B550 B3A6 D3AF C574 8422 28E4 0632 _______________________________________________ Xen-users mailing list Xen-users@xxxxxxxxxxxxxxxxxxx http://lists.xensource.com/xen-users _______________________________________________ Xen-users mailing list Xen-users@xxxxxxxxxxxxxxxxxxx http://lists.xensource.com/xen-users

©2013 Xen Project, A Linux Foundation Collaborative Project. All Rights Reserved.
Linux Foundation is a registered trademark of The Linux Foundation.
Xen Project is a trademark of The Linux Foundation.