Here is my Netfilter configuration on a 2.6-test8 kernel:

     │      <M> Connection tracking (required for masq/NAT)                │ │
  │ │      <M>   FTP protocol support                                     │ │
  │ │      <M>   IRC protocol support                                     │ │
  │ │      <M>   TFTP protocol support                                    │ │
  │ │      <M>   Amanda backup protocol support                           │ │
  │ │      <M> Userspace queueing via NETLINK                             │ │
  │ │      <M> IP tables support (required for filtering/masq/NAT)        │ │
  │ │      <M>   limit match support                                      │ │
  │ │      <M>   IP range match support                                   │ │
  │ │      <M>   MAC address match support                                │ │
  │ │      <M>   Packet type match support                                │ │
  │ │      <M>   netfilter MARK match support                             │ │
  │ │      <M>   Multiple port match support                              │ │
  │ │      <M>   TOS match support                                        │ │
  │ │      <M>   recent match support                                     │ │
  │ │      <M>   ECN match support                                        │ │
  │ │      <M>   DSCP match support                                       │ │
  │ │      <M>   AH/ESP match support                                     │ │
  │ │      <M>   LENGTH match support                                     │ │
  │ │      <M>   TTL match support                                        │ │
  │ │      <M>   tcpmss match support                                     │ │
  │ │      <M>   Helper match support                                     │ │
  │ │      <M>   Connection state match support                           │ │
  │ │      <M>   Connection tracking match support                        │ │
  │ │      <M>   Owner match support                                      │ │
  │ │      <M>   Packet filtering                                         │ │
 │      <M>     REJECT target support                                  │ │
  │ │      <M>   Full NAT                                                 │ │
  │ │      <M> MASQUERADE target support                                  │ │
  │ │      <M> REDIRECT target support                                    │ │
  │ │      < > NETMAP target support                                      │ │
  │ │      < > SAME target support                                        │ │
  │ │      [*] NAT of local connections (READ HELP)                       │ │
  │ │      <M> Basic SNMP-ALG support (EXPERIMENTAL)                      │ │
  │ │      <M> Packet mangling                                            │ │
  │ │      <M>   TOS target support                                       │ │
  │ │      <M>   ECN target support                                       │ │
  │ │      <M>   DSCP target support                                      │ │
  │ │      <M>   MARK target support                                      │ │
  │ │      < >   CLASSIFY target support                                  │ │
  │ │      <M> LOG target support                                         │ │
  │ │      <M> ULOG target support                                        │ │
  │ │      <M> TCPMSS target support                                      │ │
  │ │      <M> ARP tables support                                         │ │
  │ │      <M>   ARP packet filtering                                     │ │
  │ │      <M>   ARP payload mangling                                     │ │
  │ │      < > ipchains (2.2-style) support
  │ │      < >   ipfwadm (2.0-style) support

As far as I remeber, one of the modules also required this under QoS and/or Fair queuing:

  │ │              [*]   Packet classifier API                            │ │
  │ │              < >     TC index classifier                            │ │
  │ │              <M>     Routing table based classifier                 │ │
  │ │              < >     Firewall based classifier                      │ │
  │ │              < >     U32 classifier                                 │ │

Good luck!

Jesper

Chase Jeffery D wrote:
Gentoo-sources

Does anyone have a list of kernel settings for build time that includes iptables/netfilter/mangaling  ?  I'm having a heck of a time Building the kernel.  I continually get errors or genkernel won't get past "Make Modules".  I've looked at the log in var but that’s not much help.   Any help would be greatly appreciated….

Jeff

-- [EMAIL PROTECTED] mailing list

Reply via email to