Joel Merrick wrote: > I was wondering if anybody has used l7-filter with GNAP? > > If not how extensible is GNAP. I'm asking as I've never used it before, > lol..
GNAP can be extended to run any portage application. The default profile used (uclibc/hardened) might limit the software you can successfully compile though. > For l7-filter to work there needs to be patches to the IPT stuff (to add > a MARK) in the kernel and also within IP tables userland tools.. GNAP uses standard Portage elements and Catalyst so if you require a patched iptables and a patched kernel there is not way to tell Catalyst to plug patches at the right time in the middle of the build process. You can, however, put any ebuild you want in the provided portage overlay directory (a special my-hardened-sources-2.6.11.ebuild or my-iptables-1.0.ebuild) and use them in your specs files. -- Koon -- [email protected] mailing list
