talhaco / droidwall

Automatically exported from code.google.com/p/droidwall
0 stars 0 forks source link

DroidWall does not work on rooted Motorola Milestone (2.0.1) "iptables not found" #6

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago
What steps will reproduce the problem?
1. Install app on Motorola Milestone
2. Try to apply the rules

What is the expected output?
- Working firewall! :) 

What do you see instead?
- Errcode 127 - "iptables: not found"

What version of the product are you using?
- DroidWall 1.3.6

On what operating system?
- Android 2.0.1 on rooted Motorola Milestone

Original issue reported on code.google.com by rhc...@gmail.com on 27 Jan 2010 at 12:09

GoogleCodeExporter commented 8 years ago
I was told, that http://code.google.com/p/android-wifi-tether/ brings an own 
iptables
with it. Maybe this would also the solution for this problem?

Original comment by rhc...@gmail.com on 27 Jan 2010 at 8:29

GoogleCodeExporter commented 8 years ago
Can you please try to install this application and let me know the results?
If that works I may try to implement a similar approach on Droid Wall.

Thanks

Original comment by rodrigo...@gmail.com on 28 Jan 2010 at 1:41

GoogleCodeExporter commented 8 years ago
I just installed this onto my rooted Droid and get the same error code. Would 
love to get this working so I can 
control which apps get access.
Thanks

Original comment by jtoole78...@gmail.com on 28 Jan 2010 at 3:39

GoogleCodeExporter commented 8 years ago
@Rodrigo: Of course I can install wifi tether. But how can I use iptables from 
this
app with DroidWall? (Sorry, I am not so deep into Android... Linux/Unix is no 
problem.)
Just tell me exactly what I should try.

Original comment by rhc...@gmail.com on 28 Jan 2010 at 11:38

GoogleCodeExporter commented 8 years ago
@rhcnbg: If the wifi tether application install the iptables executable in the 
system
path you should be able to run Droid Wall after installing AND running wifi 
tether.

I still suspect that it will miss a netfilter kernel module required by Droid 
Wall -
if that is the case you will receive a different error message when trying to 
apply
the rules on Droid Wall. That can probably be fixed by shipping the kernel 
module
with Droid Wall tough.

Original comment by rodrigo....@gmail.com on 28 Jan 2010 at 11:45

GoogleCodeExporter commented 8 years ago
I'll try asap. In a German android forum I was told that the milestone kernel 
does
include everything that is needed, only iptables is missing.

Original comment by rhc...@gmail.com on 28 Jan 2010 at 6:03

GoogleCodeExporter commented 8 years ago
=> /data/data/android.tether/bin/iptables

Original comment by rhc...@gmail.com on 28 Jan 2010 at 6:06

GoogleCodeExporter commented 8 years ago
Does not work if wifi tether is just installed. But now I have iptables on the 
phone.
Where shall I place it?

Original comment by rhc...@gmail.com on 28 Jan 2010 at 11:04

GoogleCodeExporter commented 8 years ago
Copied iptables to /system/bin => DroidWall is working! :-)

Original comment by rhc...@gmail.com on 28 Jan 2010 at 11:20

GoogleCodeExporter commented 8 years ago
Awesome!

I will keep this issue opened as a future enhancement. I will try to implement a
behavior similar to wifi tether.

Original comment by rodrigo...@gmail.com on 29 Jan 2010 at 11:30

GoogleCodeExporter commented 8 years ago
Pls I downloaded droidwall on my HTC hero running on 3.2 modaco Rom wit 
wireless tethering but its 
not working...I get a message "error applying iptable rules. Exit code 1...pls 
help me I really need dis 
app...thanx

Original comment by chuxon...@gmail.com on 2 Feb 2010 at 3:12

GoogleCodeExporter commented 8 years ago
It would be nice if DroidWall could include its own iptables, although anybody 
smart 
enough to root their Droid/Milestone should also be able to copy iptables, but 
it's 
just an added hassle.
Couldn't you just make DroidWall also check for iptables in the location where 
WiFi 
Tether puts it?

Original comment by bart.crijns on 3 Mar 2010 at 8:31

GoogleCodeExporter commented 8 years ago
Here it also seems that after a reboot, though the rules still are shown 
correctly, I
have to aply them again to get it working...

So maybe you should include simething like an auto-apply at startup of the 
phone...

Original comment by rhc...@gmail.com on 3 Mar 2010 at 9:32

GoogleCodeExporter commented 8 years ago
@rhcnbg If you press "Show Rules" after a reboot and it displays a non-empty 
list of
rules it means that the rules were correctly applied by iptables. DroidWall 
already
auto-apply at startupt of the phone.

If the "Show Rules" is empty after a reboot, I would appreciate a logcat output
catpture of your reboot.

Original comment by rodrigo...@gmail.com on 3 Mar 2010 at 12:16

GoogleCodeExporter commented 8 years ago
moto droid with netfilter enabled kernel. Using DroidMod 1.0
i have moved iptables from wifi tether to /system/bin.
After selecting app and applying rules i get "Exit Code: 1 - iptables: No
chain/target/match by that name"  

Original comment by fone...@gmail.com on 4 Mar 2010 at 2:14

GoogleCodeExporter commented 8 years ago
@fonebox this happens because your kernel was compiled without the "netfilter 
owner"
kernel module. netfilter has a bunch of optional extra modules, and the "owner"
module must be enabled in the kernel configuration to allow filtering in a
"per-application" basis. If you use a custom ROM, you can probably request the 
ROM
developer to enable this kernel module in the next releases. Regards

Original comment by rodrigo...@gmail.com on 4 Mar 2010 at 12:08

GoogleCodeExporter commented 8 years ago
Have droid w/ stained glass rom.  Getting error 127, no iptables.  Can't find 
the directory with the 
iptables to copy as suggested (even with files unhidden in astro).  Can someone 
provide the iptables for 
me to put in that directory or provide another workaround.

Original comment by JLazar...@gmail.com on 11 Mar 2010 at 4:46

GoogleCodeExporter commented 8 years ago
When I try to run android-wifi-tether, it complains "No Netfilter!".  (Barnacle 
wifi 
tether works great!)

With android-wifi-tether installed, I still can't find iptables.  When mounting 
the 
device I don't see the root directory.  And AndExplorer doesn't seem to work 
right.

How to I move the iptables directory around?

(Moto Droid 2.1)

Original comment by davecohe...@gmail.com on 5 Apr 2010 at 3:34

GoogleCodeExporter commented 8 years ago
Explicit instructions to copy the file:
1. Download http://code.google.com/p/android-wifi-tether/ and install.
2. Superuser
    $ su
2. Remount system as rw (can use Droid Root Helper app to do this)
    # mount -o remount,rw -t yaffs2 /dev/block/mtdblock3 /system
3. Copy iptable to system executables directory
    # cp /data/data/android.tether/bin/iptables /system/bin

However, I get this error:
"Error applying iptables rules. Exit code: 3
iptables v1.3.7: can't initialize iptables table 'filter': iptables who? (do 
you need
to insmod?)
Perhaps iptables or your kernel needs to be upgraded."

Moto Droid, Android 2.0

Original comment by boone.ad...@gmail.com on 6 Apr 2010 at 4:21

GoogleCodeExporter commented 8 years ago
[deleted comment]
GoogleCodeExporter commented 8 years ago
with out mess with binrys in the /system it also work just with a symlink:

1. Download http://code.google.com/p/android-wifi-tether/ and install.
2. switch to root
    $ su
2. Remount system as rw (can use Droid Root Helper app to do this)
    # mount -o remount,rw -t yaffs2 /dev/block/mtdblock3 /system
3. add syslink iptable to the android.tether directory
    # ln -s  /system/bin/iptables /data/data/android.tether/bin/iptables
4. remount the system as ro!
    # mount -o remount,ro -t yaffs2 /dev/block/mtdblock3 /system

it work for me on a Milestone with 2.1

Original comment by bofh....@gmail.com on 11 Jun 2010 at 7:49

GoogleCodeExporter commented 8 years ago
does the same on a rooted Xperia X10.
Unfortunately the android wifi tether fix does not work ad wifi tether 
complaisna bout netfilter not being there and force closes.

Original comment by mariole...@gmail.com on 30 Jun 2010 at 6:13

GoogleCodeExporter commented 8 years ago
the same on LG GT540
no iptables, no netfilter, no alternative kernels/firmwares :)

Original comment by NDeseven on 28 Aug 2010 at 8:47

GoogleCodeExporter commented 8 years ago
Version 1.4.0 now ships with a bundled iptables :)

Original comment by rodrigo...@gmail.com on 6 Sep 2010 at 7:12

GoogleCodeExporter commented 8 years ago
Using 1.4.5 on rooted LG GT540 with default LG 2.1 ANDROID ROM. And am 
receiving the above mentioned error.

Original comment by tomi.ura...@gmail.com on 27 Nov 2010 at 7:57

GoogleCodeExporter commented 8 years ago
@tomi.urankar, can you please post here the contents of the /proc/cpuinfo file? 
You can use a file explorer for example to read that file. Thanks

Original comment by rodrigo...@gmail.com on 28 Nov 2010 at 6:17