iptables to limit no. of connection per domain

David A. Bandel david
Mon May 17 11:29:42 PDT 2004 

On Wed, 10 Apr 2002 15:34:48 +0800
begin  "m.w.Chang" <mwchang at netvigator.com> spewed forth:

> Just tried. kernel 2.4.18...
> below are the failed tests, and the very weird error...
> 
> Do you want to apply this patch [N/y/t/f/a/r/b/w/v/q/?] y
> Testing patch submitted/netlink-tcpdiag.patch...
> Failed to patch copy of /usr/src/linux
> TEST FAILED: patch NOT applied.
> 
> Do you want to apply this patch [N/y/t/f/a/r/b/w/v/q/?] y
> Testing patch base/ftos.patch...
> Could not find place to slot in Config.in line
> TEST FAILED: patch NOT applied.
> 
> Do you want to apply this patch [N/y/t/f/a/r/b/w/v/q/?] y
> Testing patch base/iplimit.patch...
>     Placed new Config.in line
>     Placed new Configure.help entry
>     Placed new Makefile line
> Failed to patch copy of /usr/src/linux
> TEST FAILED: patch NOT applied.
> 
> Do you want to apply this patch [N/y/t/f/a/r/b/w/v/q/?] y
> Testing patch base/pptp-gre-ct-nat-0.83.patch...
> Failed to patch copy of /usr/src/linux
> TEST FAILED: patch NOT applied.
> :

The above are normal.  Why do you think you need all the above anyway? 
Thought you just needed iplimit, no _everything_ (and everything won't
compile).

> :
> cp: cannot create link 
> `/tmp/f874cbe041aff1e677d2565db11823ba486dccb10828a6b18495ab61b5ac8090/
> patch-o-matic/submitted/netfilter-arp.patch.help': Invalid cross-device
> link cp: cannot create link 
> `/tmp/f874cbe041aff1e677d2565db11823ba486dccb10828a6b18495ab61b5ac8090/
> .#Makefile.1.63': Invalid cross-device link
> cp: cannot create link 
> `/tmp/f874cbe041aff1e677d2565db11823ba486dccb10828a6b18495ab61b5ac8090/
> ip6tables-restore.8': Invalid cross-device link
> cp: cannot create link 
> `/tmp/f874cbe041aff1e677d2565db11823ba486dccb10828a6b18495ab61b5ac8090/
> ip6tables-save.8': Invalid cross-device link
> cp: cannot create link 
> `/tmp/f874cbe041aff1e677d2565db11823ba486dccb10828a6b18495ab61b5ac8090/
> .makefirst': Invalid cross-device link
> cp: cannot create link 
> `/tmp/f874cbe041aff1e677d2565db11823ba486dccb10828a6b18495ab61b5ac8090/
> iptables.d': Invalid cross-device link
> cp: cannot create link 
> `/tmp/f874cbe041aff1e677d2565db11823ba486dccb10828a6b18495ab61b5ac8090/
> iptables-standalone.d': Invalid cross-device link
> Failed to make copy of /usr/src/iptables-1.2.6a
> make: *** [patch-o-matic] Error 1

either you ran out of space in you /tmp partition or your
iptables-1.2.6a/, linux/ (and from the looks of it /tmp) are not all on
the same partition.  The above is a hard link error message.

the patch-o-matic works by making a copy of a portion of your kernel tree,
applying the patch (actually trying to reverse the patch), to see if it
can apply it without hosing your kernel tree.  If so, it does.  

BTW, in either 1.2.5 or 1.2.6a, Rusty introduced the ability to back out
patches.  I suggest you back out those patches you don't need, they may
prevent iplimit from compiling.

Ciao,

David A. Bandel
-- 
Focus on the dream, not the competition.
		-- Nemesis Racing Team motto

More information about the Linux-users mailing list