OpenWrt Forum Archive

Topic: fwbuilder genrated config errors

The content of this topic has been archived on 5 May 2018. There are no obvious gaps in this topic, but there may still be some posts missing at the end.

Post #1
pcolbeck
29 Nov 2005, 14:56

Hi

I have fwbuilder configured to drop a config into /tmp on my WRT54G v2.2. When saving the config it errors:

Logged in
SSH session terminated, exit status: ERROR
ERROR: Terminating install sequence

The config is there though. When I run teh config I ger these errors though it does seem to be working:

iptables: No chain/target/match by that name
iptables: No chain/target/match by that name
Rule 0 (vlan2)
iptables: No chain/target/match by that name
Rule 0 (global)
iptables: No chain/target/match by that name
Rule 1 (global)
iptables: No chain/target/match by that name
Rule 2 (global)
iptables: No chain/target/match by that name
Rule 3 (global)
iptables: No chain/target/match by that name
Rule 4 (global)
iptables: No chain/target/match by that name
Rule 5 (global)
iptables: No chain/target/match by that name
Rule 6 (global)
iptables: No chain/target/match by that name

It looks like its failing on something to do with logging. Perhaps I need another no default package installed. I am running WhiteRusian RC4 and have installed all the iptables-mod packages.

Thanks

Pat

Post #2
Nico
29 Nov 2005, 16:45

execute the script with:

# sh -x <script>

It should display the commands executed and spot the missing iptables / netfilter modules.

Post #3
jkhax0r
29 Nov 2005, 20:12

If its anything like mine, its because everytime the script created by fwbuilder tries to add a LOG entry, it gives that error.  If I had to guess, I'd say you are trying to log all those rules, and if its like mine, you can fix it by turning off logging for each policy.  If this is the problem, then all the commands were still working properly btw, you just weren't logging. 

Well anyway, so thats presents my problem...
whenever my script calls:

iptables -A RULE_7 -j LOG

it replies with iptables:No chain/match...   
Basically anytime i have a "-j LOG" it gives back the same error message as from the above post.  I tried adding all the ULOG packages from ipkg and loading the module too and still nothing.   Anyone know why I can't log.  I'm a newb to iptables so it may be something otherwise very obvious.

Post #4
jkhax0r
29 Nov 2005, 20:14

Its not that i am trying to add logging to a chain that doesn't exist either.  Its probably just that the "-m LOG" can't find this LOG, and I'm too new too iptables to know why this is and how to fix it. 

Thanks

Post #5
pcolbeck
29 Nov 2005, 21:19

Yup your right its the "- j LOG" lines that are spirtting out the errors. Don't know why as yet though.

Post #6
jkhax0r
29 Nov 2005, 21:58

Please post it here if you figure out how to fix it.  I will do the same if I find out.

- Thanks

Post #7
florian_
29 Nov 2005, 22:15

Maybe :

insmod ipt_LOG

should fix the problem ?

(Last edited by RItalMan on 29 Nov 2005, 22:15)

Post #8
pcolbeck
29 Nov 2005, 22:54

That fixed it, thanks guys !

Post #9
jkhax0r
30 Nov 2005, 06:30

Same here... thanks

The discussion might have continued from here.