Freetz questions in english
- Ersteller faina09
- Erstellt am
olistudent
IPPF-Urgestein
- Mitglied seit
- 19 Okt 2004
- Beiträge
- 14,787
- Punkte für Reaktionen
- 13
- Punkte
- 38
I didn't have time to look at it. We know where it comes from but not how to solve it... ;-)
Regards
Oliver
Regards
Oliver
Hi,
This is caused by the "XFRM" modules, selected by the ipsec support. This leads to a different case during compilation of iptables (which has to take care wether ipsec is active in kernel). For w/o "replace kernel" only the iptables modules are build, but the kernel uses no ipsec, this leads to a missing symbol in iptables modules.
As a "workaround" you may try two approaches:
1. select "Show advanced options" and "Replace kernel"
2. call "make kernel-menuconfig" and in "Networking --> Networking options" deselect the following entries:
IPsec user configuration interface
PF_KEY sockets
IP: AH transformation
IP: ESP transformation
IP: IPComp transformation
IP: tunnel transformation
IPv6: AH transformation
IPv6: ESP transformation
IPv6: IPComp transformation
IPv6: tunnel transformation
hope that's all. Afterward, searching "XFRM" in kernels menuconfig (hit "/" and you will be prompted a search field) should report that "XFRM" is not selected.
Rebuild iptables aftwerwards.
Jörg
This is caused by the "XFRM" modules, selected by the ipsec support. This leads to a different case during compilation of iptables (which has to take care wether ipsec is active in kernel). For w/o "replace kernel" only the iptables modules are build, but the kernel uses no ipsec, this leads to a missing symbol in iptables modules.
As a "workaround" you may try two approaches:
1. select "Show advanced options" and "Replace kernel"
2. call "make kernel-menuconfig" and in "Networking --> Networking options" deselect the following entries:
IPsec user configuration interface
PF_KEY sockets
IP: AH transformation
IP: ESP transformation
IP: IPComp transformation
IP: tunnel transformation
IPv6: AH transformation
IPv6: ESP transformation
IPv6: IPComp transformation
IPv6: tunnel transformation
hope that's all. Afterward, searching "XFRM" in kernels menuconfig (hit "/" and you will be prompted a search field) should report that "XFRM" is not selected.
Rebuild iptables aftwerwards.
Jörg
Zuletzt bearbeitet:
Thank you for the description.
I tried "Replace kernel" option but my Freetz needed recovery!
Is there any special think I must do to use this option?
Must I do *both* the operations you described?
I tried "Replace kernel" option but my Freetz needed recovery!
Is there any special think I must do to use this option?
Must I do *both* the operations you described?
No, both "options" should work on their own.
The first one would rebuild the kernel, and therefore include all the ipsec-stuff making the iptables modules work, when they reffer to this part.
The second one should build the kernel modules w/o ipsec, so the iptables modules will not reffer to this part.
Jörg
The first one would rebuild the kernel, and therefore include all the ipsec-stuff making the iptables modules work, when they reffer to this part.
The second one should build the kernel modules w/o ipsec, so the iptables modules will not reffer to this part.
Jörg
Dear all,
My questions are most probably not about Freetz problems, but I haven't found a topic like "General FB questions in English"
Can I hope for you help pls?
The first thing is the message appears in the log every time I start my FB:
"cat: can't open '/etc/default.Fritz_Box_7170/avme/ar7.cfg': No such file or directory"
Nevertheless, FB works fine, it finds the default config somewhere else)
I know, what's the problem: I have switched my FB from Annex B to A, so there is directory /etc/default.Fritz_Box_7170_Annex_A instead of mentioned.
Can I just ignore that message?
Another one is lot of messages in the syslog:
and every two minutes something forces the same parameter(s) to "10sec".
What could that mean?
Thanks.
My questions are most probably not about Freetz problems, but I haven't found a topic like "General FB questions in English"
Can I hope for you help pls?The first thing is the message appears in the log every time I start my FB:
"cat: can't open '/etc/default.Fritz_Box_7170/avme/ar7.cfg': No such file or directory"
Nevertheless, FB works fine, it finds the default config somewhere else
)I know, what's the problem: I have switched my FB from Annex B to A, so there is directory /etc/default.Fritz_Box_7170_Annex_A instead of mentioned.
Can I just ignore that message?
Another one is lot of messages in the syslog:
So, every two minutes some process changes some paramater(s) to "25sec" for tiwlan:0 and cpmac:0 ifaces,
and every two minutes something forces the same parameter(s) to "10sec".
What could that mean?
Thanks.
You can just create an English thread for your question.
I don't think anybody wanted all English questions in one thread, it's just that this thread got a bad title. We don't keep all other questions together in a single thread named "Freetz questions in German".
I don't think anybody wanted all English questions in one thread, it's just that this thread got a bad title. We don't keep all other questions together in a single thread named "Freetz questions in German".
thank you MaxMuster
Anyway the problem was fixed by Rev 5553
I mounted Rev.5573 and it works fine!
many thanks to Oliver for the fix!!
=================
I tried Rev. 6096 and a problem arises again in vpnc:
# /etc/init.d/rc.vpnc start
# Starting vpnc ... vpnc: can't resolve symbol 'index'
# failed.
partial output of sh -x /etc/init.d/rc.vpnc start
any hint?
Anyway the problem was fixed by Rev 5553
I mounted Rev.5573 and it works fine!
many thanks to Oliver for the fix!!
=================
I tried Rev. 6096 and a problem arises again in vpnc:
# /etc/init.d/rc.vpnc start
# Starting vpnc ... vpnc: can't resolve symbol 'index'
# failed.
partial output of sh -x /etc/init.d/rc.vpnc start
Code:
Starting vpnc ... + config
+ modlib_config
+ local in_files=vpnc
+ local out_file=/mod/etc/vpnc.conf
+ [ -x /tmp/flash/vpnc_conf ]
+ [ -x /tmp/flash/vpnc/vpnc_conf ]
+ /mod/etc/default.vpnc/vpnc_conf
+ cat /tmp/flash/vpnc.extra /tmp/flash/vpnc/vpnc.extra
+ env - PATH=/sbin:/bin:/usr/sbin:/usr/bin:/mod/sbin:/mod/bin:/mod/usr/sbin:/mod/usr/bin vpnc --script /etc/default.vpnc/vpnc-script /mod/etc/vpnc.conf
vpnc: can't resolve symbol 'index'
+ local rv=1
+ [ 1 -ne 0 ]
+ echo failed.
failed.
+ exit 1any hint?
Zuletzt bearbeitet:
[Edit frank_m24: Fullquote deleted, please observe the Forum rules.]
I tried again with version 6143 but the problem is still the same....
I tried again with version 6143 but the problem is still the same....
olistudent
IPPF-Urgestein
- Mitglied seit
- 19 Okt 2004
- Beiträge
- 14,787
- Punkte für Reaktionen
- 13
- Punkte
- 38
Do you select vpnc in menuconfig and build it into your firmware? This problem occurs when you build vpnc with another toolchain then your uClibc.
Regards
Oliver
edit: We can solve this like: http://git.buildroot.net/buildroot/...h?id=7c709f4affc44f3bbc9a09fec8d84ae3807e31e7
Regards
Oliver
edit: We can solve this like: http://git.buildroot.net/buildroot/...h?id=7c709f4affc44f3bbc9a09fec8d84ae3807e31e7
Zuletzt bearbeitet:
yes I selected vpnc in menuconfig, I did no config modifications with respect to the working version build.
I can try a patch like this you referenced, but I didn't understand in which file
I can try a patch like this you referenced, but I didn't understand in which file
olistudent
IPPF-Urgestein
- Mitglied seit
- 19 Okt 2004
- Beiträge
- 14,787
- Punkte für Reaktionen
- 13
- Punkte
- 38
And do you use the whole firmware? When vpnc is selected in menuconfig. I can't imagine how this failure can happen.
Regards
Oliver
Regards
Oliver
Actually the linker should not even create the binary if there is no definition for the symbol. Can you try with a complete new checkout?
Ok I will try this evening. tnx for the help
----
I saved my configuration, delete and redo the svn checkout, loong time making ;-) but now (rev 6145) everything is working well!
Thank you again for your support!
----
I saved my configuration, delete and redo the svn checkout, loong time making ;-) but now (rev 6145) everything is working well!
Thank you again for your support!
Zuletzt bearbeitet:
again a problem, with build 6440, again starting vpnc: I got the message
I solved including ALL the crypto library in the build:
Advanced Options->Shared libraries ->Crypto & SSL-> GnuPG crypoto library/Configuration-> (select all)
(may be some are not required, but I cannot state which)
I solved an other (little) bug:
IPTABLES:
image on "Action" column is missing:
http://192.168.178.1:8181/cgi-bin/images/ACCEPT.gif
The correct link should be
http://192.168.178.1:8181/images/ACCEPT.gif
that is /usr/mww/images/ACCEPT.gif
I modified file ./make/iptables-cgi/files/root/usr/lib/cgi-bin/iptables.cgi
line 183:
- echo "<td align='center'><img src='../images/"$IMAGE".gif' title='"$IMAGE"'></td>"
+ echo "<td align='center'><img src='/images/"$IMAGE".gif' title='"$IMAGE"'></td>"
I solved including ALL the crypto library in the build:
Advanced Options->Shared libraries ->Crypto & SSL-> GnuPG crypoto library/Configuration-> (select all)
(may be some are not required, but I cannot state which)
I solved an other (little) bug:
IPTABLES:
image on "Action" column is missing:
http://192.168.178.1:8181/cgi-bin/images/ACCEPT.gif
The correct link should be
http://192.168.178.1:8181/images/ACCEPT.gif
that is /usr/mww/images/ACCEPT.gif
I modified file ./make/iptables-cgi/files/root/usr/lib/cgi-bin/iptables.cgi
line 183:
- echo "<td align='center'><img src='../images/"$IMAGE".gif' title='"$IMAGE"'></td>"
+ echo "<td align='center'><img src='/images/"$IMAGE".gif' title='"$IMAGE"'></td>"
Zuletzt bearbeitet:
Neueste Beiträge
-
VTH Klingelton einmalig abspielen
- Letzte: Laxion
-
Fritz!Box 5690Pro - Fw 8.xx - Release - Zyklus 'Smart24P1FCS'
- Letzte: tom4164
-
Fritz!Box Telefon-dingsbums V5
- Letzte: l.gun
-
[Info] Update-Check über den neuen AVM-Service
- Letzte: bino
-
FRITZ!Box 7590 AX / FRITZ!OS 8.00 vom 16.09.2024
- Letzte: AugeK
