So I'm searching all over the place for some source of information on iptables, how it works, how it's been architected, what it consists of, so I can write a script, and load all of the modules needed to do simple masq'ing on my Redhat server.

However, seems like no matter what I do, when I run any of my scripts (which include a lot of the ones people have posted here, BTW) I get CRAZY errors, like 'iptables who? Need to run insmod? Either kernel or iptables need to be upgraded.'

This pisses me off, 'cos I'm using a 2.4.x kernel, and version 1.2 of iptables! It seems to be the '-t' option that throws it, 'cos it can't find the tables, but then it doesn't tell you what modules your looking for, and I can't find info on where these modules are!

I've checked netfilter.samba.org, here, redhat, boingworld, and NOTHING. I'm going back now to check all of the links off of these pages, just thought someone else might have a clue.

Thanks.

All the kernel modules you need/it asks for come with the kernel. They should be in /lib/modules/2.4.x/kernel/net/ipv4/netfilter. You should try insmoding these and trying again.

If they're not there, you might as well just compile all of them, since you don't know if you'll need them or not, and it won't hurt anything. The modules are listed under "Networking options" --> "IP: Netfilter Configuration." See the kernel how to at linuxdoc.org if you need more help.

For simplicity, I recommend going ahead and compiling all the iptables features that you're going to use into the kernel directly. My rule is that anything that's going to be in use all the time (ie, the firewall) should go in the kernel directly, anything that's only going to be used from time to time (FAT and CD-ROM support, for example) should be a module.

It really, really, really sounds just like you don't have iptables compiled into your kernel, or you have it as a module and you haven't modprobed it. I just made a post a few seconds ago about people not understanding the distinction between the "iptables" which is the actual firewall in the kernel, and the "iptables" program which is a userspace program used to control the firewall. It sounds like you have the latter without the former.