Hi,
On 01.04.2016 00:53, Michael Tremer wrote:
Hi,
On Wed, 2016-03-30 at 00:06 +0200, Matthias Fischer wrote:
Hi,
On 29.03.2016 23:00, Michael Tremer wrote:
Hi,
this actually should not happen.
Ok, then being suspicious was perhaps right.
Yes.
Ok. Good.
Why is iptables building ebtables stuff?
I think because its a new version. I wrote about this yesterday in "Some delicate updates...", after I started preparing some updates, based on 'next'. One of these is 'iptables 1.6.0'. While preparing a backup to test these updates on my production machine, I noticed that some files existed twice, in different directories, belonging to 'iptables' and 'ebtables'. By now, I didn't go any further.
Have these two been merged?
Only one - 'ebtables': 'add ebtables & arptables for configuring the filter of a ethernet-bridge' was added 2008-03-25 by arne_f, 'ebtables: Update to 2.0.10-4' was added 2012-11-11 by Michael Tremer, ;-)
'iptables 1.6.0' isn't even pushed or uploaded or anything else yet. I'm just testing.
I was actually asking if ebtables is merged into the iptables package.
Ups. Sorry, "academical misunderstood"...
Maybe we should stay on the last release?!
For now, I'd say 'Yes'! I'll take a closer look at it!
Can you disable it?
Thats why I'm asking here. I found no option yet to disable building the 'libebt*-files in 'iptables 1.6.0'. For now I just commented the duplicate files in the new 'iptables'-rootfile. If thats all I have to do, then everything is fine. If not, we'll have to look for another solution. I don't know - and can't judge yet - if commenting these files could have any unwanted effects to any 'iptables'-functions. As long as we stick to the '1.4.21'-version, nothing will happen.
I think if you try to load the wrong files that should certainly break things as there will be an ABI mismatch.
By the way: at this moment, an additional test build, containing the five updates from my previous post, was finished. Without any errors, but again with the duplicates from 'iptables 1.6.0' and from 'ebtables'. Do you want me to send the diffs? I could push them to GIT so you could take a look.
No need for me.
Best, Matthias
-Michael
On Tue, 2016-03-29 at 20:37 +0200, Matthias Fischer wrote:
Hi,
As I wrote before I'm testing with 'iptables 1.6.0'.
While looking which files I would need to backup so I could run some tests on my production machine I found that 'iptables 1.6.0' and current 'ebtables 2.0.10-4' are building duplicate files.
'ebtables' puts them in '/usr/lib', 'iptables 1.6.0' in '/lib/xtables':
libebt_802_3.so libebt_ip.so libebt_log.so libebt_mark_m.so
What would be the best way to handle this? Comment in (which?) rootfile?
As an info: 'iptables 1.6.0' was build with the new option '--disable-nftables', otherwise build failed: "fatal error: libnftnl/rule.h: No such file or directory".
Best, Matthias