Bug 19124

Summary:	Введение патча patch-o-matic-ng в ядро (как минимум для применения tarpit)
Product:	Branch 5.0	Reporter:	Кудрявцев Сергей <KudryavtsevSV>
Component:	iptables	Assignee:	Dmitry V. Levin <ldv>
Status:	CLOSED NOTABUG	QA Contact:	qa-5.0 <qa-5.0>
Severity:	normal
Priority:	P2	CC:	KudryavtsevSV, erthad
Version:	unspecified
Hardware:	x86_64
OS:	Linux

Description Кудрявцев Сергей 2009-03-10 22:36:35 MSK

Отсутствуют возможности применения многих возможностей iptables:

$IPT --append INPUT -i $EXTIF --match tcp --protocol tcp --syn --dport 3030:3033 -m iplimit --iplimit-above 3 --jump REJECT 
iptables v1.4.0: Couldn't load match `iplimit':/lib64/iptables/libipt_iplimit.so: cannot open shared object file: No such file or directory 

$IPT --append INPUT -i $EXTIF --match tcp --protocol tcp --match time --timestart 00:00 --timestop 08:00 --days Mon --dport 21 --jump REJECT 
iptables v1.4.0: Unknown arg `--days'

$IPT --append INPUT --match psd --jump DROP
iptables v1.4.0: Couldn't load match `psd':/lib64/iptables/libipt_psd.so: cannot open shared object file: No such file or directory 

$IPT --append INPUT -i $EXTIF --protocol tcp --match tcp --match multiport --dports 135,139,1025 --jump TARPIT 
iptables v1.4.0: Couldn't load target `TARPIT':/lib64/iptables/libipt_TARPIT.so: cannot open shared object file: No such file or directory

Comment 1 Dmitry V. Levin 2009-06-03 02:53:14 MSD

Вы вешаете баг на пакет iptables и при этом пишите про патч на ядро.  Нелогично.