Kernel-2-6 and iptables issue
omasnjak at gmail.com
Wed Aug 8 21:48:08 CEST 2007
I do not understant why you are using kernel+iptables ....etc...
You should include support for iptables in kernel there is I think in
networking options. After kernel compilation ( with iptables support )
you will have iptables packet included and be able to make iptables
rules. patch-o-matic is neccessary when you want to add some features
into iptables that is not yet included in kernel version and then you
patch kernel ( adding that feature to iptables ).
For example, for L-7 filtering you will need ( AFAIK ) to patch
kernel to add that feature. Google for " patching kernel " and you
will find a lot of links with detailed informations.
In following link is example how is patched kernel to add geiop
feature to iptables
PS: Sorry, I forgot to " reply to all " in prior mail :)
On 8/8/07, Hrad Miroslav <m.hrad at intv.cz> wrote:
> I would like to have one questionregarding to the compilation of the
> linux-kernel (2.6) and iptables.
> I need to run a firewall within the linux box, which could support at
> least ipp2p filtering, l7-layer filtering, connlimit, quota, tarpit,
> I would like to know which version of the kernel, iptables,
> patch-o-magic and other patchs to use to make compilation of the kernel
> and iptables without any errors.
> I have aleady tried to use kernels and iptables of many versions but the
> compilation of kernel was broken with some errors.
> For instance I used this packages:
> - but without success. (there was incompatibily pointer with connlimit
> and tarpit)
> Please, can you tell me which version can I use for proper kernel
> compilation ?
More information about the netfilter