[Nufw-users] Got error message from libipq

nufw-users

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Nufw-users] Got error message from libipq

From:	Vincent Schultz
Subject:	[Nufw-users] Got error message from libipq
Date:	Sun, 07 May 2006 23:22:20 +0200
User-agent:	Mozilla Thunderbird 1.0.7 (X11/20051017)

Hello all,

I tried to set nufw and nuau on Debian boxes. I used the Debian packages
available at nufw.org. The box running nufw has a 2.6.13 kernel
ip_queue_vwmark patched. For my tests, I use plaintext files for both
authentication and ACLs.

Here are my logs when I try to do a telnet on port 80 (which hangs) to
the outside :

sarge2:~# nuauth -vvvvvvvvv
** Message: debug_level is 9
** Message: Starting nuauth
** Message: Auth (user) module: plaintext
** Message: User logs module: syslog
** Message: creating acl cache thread
** Message: Creating search_and_fill thread
** Message: Creating 3 acl checkers
** Message: Creating 3 user checkers
** Message: Creating 2 user loggers
** Message: Creating 2 decision workers
** Message: Creating tls authentication server thread
** Message: Creating tls nufw server thread
** Message: Threads system started
** Message: [plaintext] read_user_list: reading [/etc/nufw/users.nufw]
** Message: [plaintext] read_acl_list: reading [/etc/nufw/acls.nufw]
** Message: [plaintext] matching with decision 1
** Message: [plaintext] matching with decision 1
** Message: [plaintext] Checking for OS sysname=[Linux]
** Message: [plaintext] OS match (Linux)
** Message: [plaintext] Checking for App=[/usr/bin/telnet.netkit]

sarge1:~# /usr/sbin/nufw -vvvvvvvv -l 4128 -L 127.0.0.1 -d
172.16.193.128 -p 4129 -t 15 -T 1000 -k /etc/nufw/nufw-key.pem -c
/etc/nufw/nufw-cert.pem -a /etc/nufw/cacert.pem
Listening on UDP port 4128
Listening on address 127.0.0.1
Sending Auth request to 172.16.193.128
Auth requests sent to port 4129
[3898] rx : 0, tx : 0, track_size : 0, start_list : (nil)
[3898] rx : 0, tx : 0, track_size : 0, start_list : (nil)
[3898] Not connected, trying TLS connection
[3898] Connection to nuauth restored
[3898] rx : 1, tx : 0, track_size : 1, start_list : 0x804f8f8
[3898] Got error message from libipq : 22
[3898] Got error message from libipq : 22

The iptables rules on the box running nufw :
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
iptables -t nat -A PREROUTING -i eth1 -s 172.16.193.0/24 -m state
--state NEW -p tcp -j QUEUE
iptables -t nat -A PREROUTING -i eth1 -s 172.16.193.0/24 -m state
--state ESTABLISHED,RELATED -j ACCEPT

On the client :
sarge4:~# nutcpc -d -H 172.16.193.128 -U suadmin
Server Certificat OK
Enter password : nutcpc 0.7 started (debug)

I don't understand the 22 error. A problem with my homemade kernel ?
With my iptables rules ?

Thank you for your help,

Vincent

[Prev in Thread]

Current Thread

[Next in Thread]

[Nufw-users] Got error message from libipq, Vincent Schultz <=
- Re: [Nufw-users] Got error message from libipq, Eric Leblond, 2006/05/08

Prev by Date: Re: [Nufw-users] Pb with nuauth
Next by Date: Re: [Nufw-users] Got error message from libipq
Previous by thread: [Nufw-users] NuFW 2.0-rc1 is available
Next by thread: Re: [Nufw-users] Got error message from libipq
Index(es):
- Date
- Thread