WARNING - OLD ARCHIVES

This is an archived copy of the Xen.org mailing list, which we have preserved to ensure that existing links to archives are not broken. The live archive, which contains the latest emails, can be found at http://lists.xen.org/
   
 
 
Xen 
 
Home Products Support Community News
 
   
 

xen-users

[Xen-users] XCP antispoof

To: xen-users@xxxxxxxxxxxxxxxxxxx
Subject: [Xen-users] XCP antispoof
From: C V <rayvittal-lists@xxxxxxxxx>
Date: Mon, 10 May 2010 11:57:56 -0700 (PDT)
Delivery-date: Mon, 10 May 2010 12:00:40 -0700
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1273517876; bh=g9JX9XiCk4/IVWg6jHBUoYX/np1+KawF3NrrM3eA2AY=; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type; b=zv7fMbxkxEFrwiyYJ8lov2Gq8dZFTvbPUT+erAFf2QRyOUOpjNQ7KWauCPqcA0LZGHJeL9pMTWsXlB1Ynr6mTkWNTn2JYbZDTVn1WTZeAFg9k6WVsqKBZne90WgxCaQeHHIzES62NzyCg0G7Ji8lZzWef6fsuvdP87gInMEXGpk=
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type; b=HUkvTy4WDjjRMGnvT9pZbISZMzOTlTOpcBBtlqrnfAY+ywJGQf56eA22sZRsA2RXb5sRvdVb/5ED5zfZZEqISuPGph+zKmcoCRMcs9cptLbKr51iO1ufrUI70R5Q8/yIyTgD5t+KXBAk2onqBIONxeOMvbhpTEKI+VJmrfp641I=;
Envelope-to: www-data@xxxxxxxxxxxxxxxxxxx
In-reply-to: <F8EB7C7A3464794A91EABC6727C9529B328246@xxxxxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:xen-users-request@lists.xensource.com?subject=help>
List-id: Xen user discussion <xen-users.lists.xensource.com>
List-post: <mailto:xen-users@lists.xensource.com>
List-subscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe>
List-unsubscribe: <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe>
References: <F8EB7C7A3464794A91EABC6727C9529B328246@xxxxxxxxxxxxxxxxxxxxxxxxx>
Sender: xen-users-bounces@xxxxxxxxxxxxxxxxxxx
I've been trying to emulate the Xen antispoof features in XCP. This requires 
the xt_physdev iptables extension. Here's what I've done:
1. Downloaded the XCP DDK VM and installed it
2. Downloaded the Dom0 kernel sources from 
http://www.xen.org/files/XenCloud/Software/latest/sources/source-1.iso to a 
running DDK VM instance
3. make menuconfig inside the kernel sources and enable physdev inside 
Networking->Network Packet Filtering->Core Netfilter Configuration->physdev 
match support
4. make modules modules_install inside the kernel sources
5. Copy resulting xt_physdev.ko to dom0
6. insmod results in an error:
insmod ./xt_physdev.ko 
insmod: error inserting './xt_physdev.ko': -1 Unknown symbol in module
dmesg shows the error to be:
xt_physdev: disagrees about version of symbol xt_register_matches
xt_physdev: Unknown symbol xt_register_matches
Modinfo reports the correct version:
# modinfo xt_physdev.ko
filename:       xt_physdev.ko
alias:          ip6t_physdev
alias:          ipt_physdev
description:    Xtables: Bridge physical device match
author:         Bart De Schuymer <bdschuym@xxxxxxxxxx>
license:        GPL
srcversion:     4D030E98D0F909D8DA92F33
depends:        x_tables
supported:      yes
vermagic:       2.6.27.42-0.1.1.xs0.1.1.737.1065xen SMP mod_unload modversions 
Xen 686 


It seems that it requires a complete kernel rebuild and re-install. Can anybody 
confirm this or help me with an alternate way of building required iptables 
extensions?

Thanks
--
C V


_______________________________________________
Xen-users mailing list
Xen-users@xxxxxxxxxxxxxxxxxxx
http://lists.xensource.com/xen-users

<Prev in Thread] Current Thread [Next in Thread>