1 |
Morning all, |
2 |
|
3 |
When emerging shorewall-5.2.1.1 I get an error from the kernel settings check: |
4 |
|
5 |
CONFIG_NF_CONNTRACK_IPV4: is not set when it should be. |
6 |
|
7 |
This is with gentoo-sources-4.19.1. And indeed there is no such kernel |
8 |
parameter: |
9 |
|
10 |
$ grep CONFIG_NF_CONNTRACK /usr/src/linux/.config |
11 |
CONFIG_NF_CONNTRACK=m <<< Note |
12 |
# CONFIG_NF_CONNTRACK_MARK is not set |
13 |
CONFIG_NF_CONNTRACK_SECMARK=y |
14 |
# CONFIG_NF_CONNTRACK_ZONES is not set |
15 |
CONFIG_NF_CONNTRACK_PROCFS=y |
16 |
# CONFIG_NF_CONNTRACK_EVENTS is not set |
17 |
# CONFIG_NF_CONNTRACK_TIMEOUT is not set |
18 |
# CONFIG_NF_CONNTRACK_TIMESTAMP is not set |
19 |
# CONFIG_NF_CONNTRACK_LABELS is not set |
20 |
# CONFIG_NF_CONNTRACK_AMANDA is not set |
21 |
CONFIG_NF_CONNTRACK_FTP=m |
22 |
# CONFIG_NF_CONNTRACK_H323 is not set |
23 |
CONFIG_NF_CONNTRACK_IRC=m |
24 |
# CONFIG_NF_CONNTRACK_NETBIOS_NS is not set |
25 |
# CONFIG_NF_CONNTRACK_SNMP is not set |
26 |
# CONFIG_NF_CONNTRACK_PPTP is not set |
27 |
# CONFIG_NF_CONNTRACK_SANE is not set |
28 |
CONFIG_NF_CONNTRACK_SIP=m |
29 |
# CONFIG_NF_CONNTRACK_TFTP is not set |
30 |
|
31 |
On another box with gentoo sources 4.14.78 I get this: |
32 |
|
33 |
$ grep CONFIG_NF_CONNTRACK_IP /usr/src/linux/.config |
34 |
CONFIG_NF_CONNTRACK_IPV4=y |
35 |
CONFIG_NF_CONNTRACK_IPV6=y |
36 |
|
37 |
So far I've been ignoring the error, assuming that the entry I've noted above |
38 |
now combines IPV4 and IPV6. |
39 |
|
40 |
Does the panel think this is worth a bug report against shorewall? |
41 |
|
42 |
-- |
43 |
Regards, |
44 |
Peter. |