| Line 36... |
Line 36... |
| 36 |
- rpmbuild -dd ***.spec
|
36 |
- rpmbuild -dd ***.spec
|
| 37 |
|
37 |
|
| 38 |
**** For ipt_netflow ****
|
38 |
**** For ipt_netflow ****
|
| 39 |
- Must be complied on a system which runs the target kernel. So install manually the targeted kernel and reboot (ipt_NETFLOW will not load during this reboot)
|
39 |
- Must be complied on a system which runs the target kernel. So install manually the targeted kernel and reboot (ipt_NETFLOW will not load during this reboot)
|
| 40 |
- install the RPMs "kernel-server-devel" (choose the targeted kernel), "lib64iptables-devel (or libiptables-devel in 32b arch)"
|
40 |
- install the RPMs "kernel-server-devel" (choose the targeted kernel), "lib64iptables-devel (or libiptables-devel in 32b arch)"
|
| 41 |
- download, uncompress and test the compilation of the last version of ipt-netflow (./configure, make all install). The module is compiled in the same directory. The libs are copied in the /lib64/iptables (libip6t_NETFLOW.so & libipt_NETFLOW.so)
|
41 |
- download, uncompress and test the compilation of the last version of ipt-netflow (./configure --disable-dkms --disable-snmp-agent, make all install). The module is compiled in the same directory. The libs are copied in the /lib64/iptables (libip6t_NETFLOW.so & libipt_NETFLOW.so)
|
| 42 |
- test the module : go to the directory of sources and try to load it (depmod + modprobe ipt_NETFLOW), run "lsmod|grep ipt_NETFLOW" to verify if it's loaded. Run "alcasar-iptables.sh" to reload netfilter rules (no errors should appear)
|
42 |
- test the module : go to the directory of sources and try to load it (depmod + modprobe ipt_NETFLOW), look at "journalctrl -f" and run "lsmod|grep ipt_NETFLOW" to verify if it's loaded. Run "alcasar-iptables.sh" to reload netfilter rules (no errors should appear). Run "alcasar-daemon.sh" to verify that all is ok.
|
| 43 |
- if all is ok, copy the tarball in rpmbuild/SOURCES. Copy and adapt the .spec in rpmbuild/SPECS (change the versions of kernel and rpm).
|
43 |
- if all is ok, copy the tarball in rpmbuild/SOURCES. Copy and adapt the .spec in rpmbuild/SPECS (change the versions of kernel and rpm).
|
| 44 |
- change to the directory ~/pmbuild/SPEC and run "rpmbuild -bb ****.spec"
|
44 |
- change to the directory ~/pmbuild/SPEC and run "rpmbuild -bb ****.spec"
|
| 45 |
--> !!! Pb : rpmbuild ne réalise pas le "make install" correctement (pas de copie du module compilé "~/rpmbuild/BUILD/ipt_NETFLOW.ko" vers /lib/modules/kernel-.../extra/ipt_NETFLOW.ko). Solutions : lancez la compil à la main (make + make install) depuis le répertoire ~/rpmbuild/BUILD
|
45 |
--> !!! Pb : rpmbuild ne réalise pas le "make install" correctement (pas de copie du module compilé "~/rpmbuild/BUILD/ipt_NETFLOW.ko" vers /lib/modules/kernel-.../extra/ipt_NETFLOW.ko). Solutions : lancez la compil à la main (make + make install) depuis le répertoire ~/rpmbuild/BUILD
|
| 46 |
- install the fresh rpm (urpmi) and load ALCASAR iptables rules (alcasar-iptables.sh). Great job ;-)
|
46 |
- install the fresh rpm (urpmi) and load ALCASAR iptables rules (alcasar-iptables.sh). Great job ;-)
|
| 47 |
|
47 |
|