I want to use -m comment --comment "message" in my iptables rule but do not have the module loaded. Through some searching, the module I need for this is "ipt_comment" but I do not have this installed. How can I make this happen?
Anybody on here successfully get ipset iptables sets to work _after_ a
My question on StackExchange
http://unix.stackexchange.com/questions/149536/upon-bootup-all-iptables-... of the things that need to be in place, otherwise iptables does not
1.) The kernel module ip_set needs to be loaded.
2.) The "sets" need to be cr
i can get iptables to whitelist / blacklist using ipset members, but after a reboot, the iptables are emptied out because the kernel module is not loaded. Have limped along in the past by customizing the iptables init script, but there has to be an out-of-the-box method.
On CentOS/RHEL 6.5, you can install ipset from the base repository.
I've built a kernel with loadable module support for various reasons, one of them the possibility to compile modules and load them without rebooting. This is supposed to be useful when I need a module that I had not enabled in the kernel config.
Now, with drivers like nouveau, it's as easy as going to the source directory, and running make M=drivers/gpu/drm/nouveau.
Well, I'm trying to do as instructed and use ipset on my host, trouble is when I go to this
iptables -I INPUT -m set -match-set autoban src -p TCP -destination-port 80 -j DROP
I get this message: iptables v1.3.5: Couldn't load match `set':/lib64/iptables/libipt_set.so: cannot open shared object file: No such file or directory which http://elrepo.org/bugs/view.php?id=83 says I need iptabl