Get Gentoo!
gentoo.org sites
gentoo.org Wiki Bugs Forums Packages
Planet Archives Sources
Infra Status

Gentoo Archives: gentoo-user

From: Peter Humphrey <peter@××××××××××××.uk>
To: gentoo-user@l.g.o
Subject: Re: [gentoo-user] Shorewall config problem
Date: Mon, 12 Nov 2018 10:54:32
Message-Id: 1602750.EXu5kns8QV@peak
In Reply to: Re: [gentoo-user] Shorewall config problem by "J. Roeleveld"
1 On Monday, 12 November 2018 10:19:24 GMT J. Roeleveld wrote:
2 > On Monday, November 12, 2018 11:11:52 AM CET Peter Humphrey wrote:
3 > > Morning all,
4 > >
5 > > When emerging shorewall-5.2.1.1 I get an error from the kernel settings
6 > > check:
7 > >
8 > > CONFIG_NF_CONNTRACK_IPV4: is not set when it should be.
9 > >
10 > > This is with gentoo-sources-4.19.1. And indeed there is no such kernel
11 > > parameter:
12 > >
13 > > $ grep CONFIG_NF_CONNTRACK /usr/src/linux/.config
14 > > CONFIG_NF_CONNTRACK=m <<< Note
15 > > # CONFIG_NF_CONNTRACK_MARK is not set
16 > > CONFIG_NF_CONNTRACK_SECMARK=y
17 > > # CONFIG_NF_CONNTRACK_ZONES is not set
18 > > CONFIG_NF_CONNTRACK_PROCFS=y
19 > > # CONFIG_NF_CONNTRACK_EVENTS is not set
20 > > # CONFIG_NF_CONNTRACK_TIMEOUT is not set
21 > > # CONFIG_NF_CONNTRACK_TIMESTAMP is not set
22 > > # CONFIG_NF_CONNTRACK_LABELS is not set
23 > > # CONFIG_NF_CONNTRACK_AMANDA is not set
24 > > CONFIG_NF_CONNTRACK_FTP=m
25 > > # CONFIG_NF_CONNTRACK_H323 is not set
26 > > CONFIG_NF_CONNTRACK_IRC=m
27 > > # CONFIG_NF_CONNTRACK_NETBIOS_NS is not set
28 > > # CONFIG_NF_CONNTRACK_SNMP is not set
29 > > # CONFIG_NF_CONNTRACK_PPTP is not set
30 > > # CONFIG_NF_CONNTRACK_SANE is not set
31 > > CONFIG_NF_CONNTRACK_SIP=m
32 > > # CONFIG_NF_CONNTRACK_TFTP is not set
33 > >
34 > > On another box with gentoo sources 4.14.78 I get this:
35 > >
36 > > $ grep CONFIG_NF_CONNTRACK_IP /usr/src/linux/.config
37 > > CONFIG_NF_CONNTRACK_IPV4=y
38 > > CONFIG_NF_CONNTRACK_IPV6=y
39 > >
40 > > So far I've been ignoring the error, assuming that the entry I've noted
41 > > above now combines IPV4 and IPV6.
42 > >
43 > > Does the panel think this is worth a bug report against shorewall?
44 >
45 > Does it show up when you search for that config-item from within "make
46 > menuconfig"?
47 > Not all config-items end up in the config-file, especially if pre-requisites
48 > are disabled themselves.
49
50 Nope.
51
52 --
53 Regards,
54 Peter.
Report Message
Find on MARC Find on Google Groups