 Home |
Products |
Support |
Community |
News |
xen-users
[Xen-users] XCP antispoof
| To: | xen-users@xxxxxxxxxxxxxxxxxxx |
|---|---|
| Subject: | [Xen-users] XCP antispoof |
| From: | C V <rayvittal-lists@xxxxxxxxx> |
| Date: | Mon, 10 May 2010 11:57:56 -0700 (PDT) |
| Delivery-date: | Mon, 10 May 2010 12:00:40 -0700 |
| Dkim-signature: | v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1273517876; bh=g9JX9XiCk4/IVWg6jHBUoYX/np1+KawF3NrrM3eA2AY=; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type; b=zv7fMbxkxEFrwiyYJ8lov2Gq8dZFTvbPUT+erAFf2QRyOUOpjNQ7KWauCPqcA0LZGHJeL9pMTWsXlB1Ynr6mTkWNTn2JYbZDTVn1WTZeAFg9k6WVsqKBZne90WgxCaQeHHIzES62NzyCg0G7Ji8lZzWef6fsuvdP87gInMEXGpk= |
| Domainkey-signature: | a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:X-YMail-OSG:Received:X-Mailer:References:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type; b=HUkvTy4WDjjRMGnvT9pZbISZMzOTlTOpcBBtlqrnfAY+ywJGQf56eA22sZRsA2RXb5sRvdVb/5ED5zfZZEqISuPGph+zKmcoCRMcs9cptLbKr51iO1ufrUI70R5Q8/yIyTgD5t+KXBAk2onqBIONxeOMvbhpTEKI+VJmrfp641I=; |
| Envelope-to: | www-data@xxxxxxxxxxxxxxxxxxx |
| In-reply-to: | <F8EB7C7A3464794A91EABC6727C9529B328246@xxxxxxxxxxxxxxxxxxxxxxxxx> |
| List-help: | <mailto:xen-users-request@lists.xensource.com?subject=help> |
| List-id: | Xen user discussion <xen-users.lists.xensource.com> |
| List-post: | <mailto:xen-users@lists.xensource.com> |
| List-subscribe: | <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=subscribe> |
| List-unsubscribe: | <http://lists.xensource.com/mailman/listinfo/xen-users>, <mailto:xen-users-request@lists.xensource.com?subject=unsubscribe> |
| References: | <F8EB7C7A3464794A91EABC6727C9529B328246@xxxxxxxxxxxxxxxxxxxxxxxxx> |
| Sender: | xen-users-bounces@xxxxxxxxxxxxxxxxxxx |
I've been trying to emulate the Xen antispoof features in XCP. This requires the xt_physdev iptables extension. Here's what I've done: 1. Downloaded the XCP DDK VM and installed it 2. Downloaded the Dom0 kernel sources from http://www.xen.org/files/XenCloud/Software/latest/sources/source-1.iso to a running DDK VM instance 3. make menuconfig inside the kernel sources and enable physdev inside Networking->Network Packet Filtering->Core Netfilter Configuration->physdev match support 4. make modules modules_install inside the kernel sources 5. Copy resulting xt_physdev.ko to dom0 6. insmod results in an error: insmod ./xt_physdev.ko insmod: error inserting './xt_physdev.ko': -1 Unknown symbol in module dmesg shows the error to be: xt_physdev: disagrees about version of symbol xt_register_matches xt_physdev: Unknown symbol xt_register_matches Modinfo reports the correct version: # modinfo xt_physdev.ko filename: xt_physdev.ko alias: ip6t_physdev alias: ipt_physdev description: Xtables: Bridge physical device match author: Bart De Schuymer <bdschuym@xxxxxxxxxx> license: GPL srcversion: 4D030E98D0F909D8DA92F33 depends: x_tables supported: yes vermagic: 2.6.27.42-0.1.1.xs0.1.1.737.1065xen SMP mod_unload modversions Xen 686 It seems that it requires a complete kernel rebuild and re-install. Can anybody confirm this or help me with an alternate way of building required iptables extensions? Thanks -- C V _______________________________________________ Xen-users mailing list Xen-users@xxxxxxxxxxxxxxxxxxx http://lists.xensource.com/xen-users |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | [Xen-users] Re: [Xen-devel] Xen GCOV Patches for latest Xen Unbstable and linux 2.6.18.8 kernel(32/64bit), Tej |
|---|---|
| Next by Date: | Re: [Xen-users] XCP antispoof, Jorge Armando Medina |
| Previous by Thread: | [Xen-users] VT-d related wiki, Attila Mravik |
| Next by Thread: | Re: [Xen-users] XCP antispoof, Jorge Armando Medina |
| Indexes: | [Date] [Thread] [Top] [All Lists] |
