Hi,

On 01.04.2016 00:53, Michael Tremer wrote:
> Hi,
> 
> On Wed, 2016-03-30 at 00:06 +0200, Matthias Fischer wrote:
>> Hi,
>> 
>> On 29.03.2016 23:00, Michael Tremer wrote:
>> > 
>> > Hi,
>> > 
>> > this actually should not happen.
>> Ok, then being suspicious was perhaps right.
> 
> Yes.

Ok. Good.

>> > 
>> > Why is iptables building ebtables stuff?
>> I think because its a new version. I wrote about this yesterday in "Some
>> delicate updates...", after I started preparing some updates, based on
>> 'next'. One of these is 'iptables 1.6.0'. While preparing a backup to
>> test these updates on my production machine, I noticed that some files
>> existed twice, in different directories, belonging to 'iptables' and
>> 'ebtables'. By now, I didn't go any further.
>> 
>> > 
>> > Have these two been merged?
>> Only one - 'ebtables':
>> 'add ebtables & arptables for configuring the filter of a
>> ethernet-bridge' was added 2008-03-25 by arne_f, 'ebtables: Update to
>> 2.0.10-4' was added 2012-11-11 by Michael Tremer, ;-)
>> 
>> 'iptables 1.6.0' isn't even pushed or uploaded or anything else yet. I'm
>> just testing.
> 
> I was actually asking if ebtables is merged into the iptables package.

Ups. Sorry, "academical misunderstood"...

> Maybe we should stay on the last release?!

For now, I'd say 'Yes'! I'll take a closer look at it!

>> > Can you disable it?
>> Thats why I'm asking here. I found no option yet to disable building the
>> 'libebt*-files in 'iptables 1.6.0'. For now I just commented the
>> duplicate files in the new 'iptables'-rootfile. If thats all I have to
>> do, then everything is fine. If not, we'll have to look for another
>> solution. I don't know - and can't judge yet - if commenting these files
>> could have any unwanted effects to any 'iptables'-functions. As long as
>> we stick to the '1.4.21'-version, nothing will happen.
> 
> I think if you try to load the wrong files that should certainly break things as
> there will be an ABI mismatch.
> 
>> 
>> By the way: at this moment, an additional test build, containing the
>> five updates from my previous post, was finished. Without any errors,
>> but again with the duplicates from 'iptables 1.6.0' and from 'ebtables'.
>> Do you want me to send the diffs? I could push them to GIT so you could
>> take a look.
> 
> No need for me.
> 
>> 
>> Best, Matthias
>> 
>> > 
>> > 
>> > -Michael
>> 
>> > 
>> > On Tue, 2016-03-29 at 20:37 +0200, Matthias Fischer wrote:
>> > > 
>> > > Hi,
>> > > 
>> > > As I wrote before I'm testing with 'iptables 1.6.0'.
>> > > 
>> > > While looking which files I would need to backup so I could run some
>> > > tests on my production machine I found that 'iptables 1.6.0' and current
>> > > 'ebtables 2.0.10-4' are building duplicate files.
>> > > 
>> > > 'ebtables' puts them in '/usr/lib', 'iptables 1.6.0' in '/lib/xtables':
>> > > 
>> > > libebt_802_3.so
>> > > libebt_ip.so
>> > > libebt_log.so
>> > > libebt_mark_m.so
>> > > 
>> > > What would be the best way to handle this? Comment in (which?) rootfile?
>> > > 
>> > > As an info:
>> > > 'iptables 1.6.0' was build with the new option '--disable-nftables',
>> > > otherwise build failed: "fatal error: libnftnl/rule.h: No such file or
>> > > directory".
>> > > 
>> > > Best,
>> > > Matthias
>> > > 
>> > > 
>