With the earlier logic, when libnfnetlink and libnetfilter_conntrack
were not installed, all the warnings showed up correctly but the final
configuration showed:
connlabel support: yes
which was faulty.
This was happening because connlabel module was blacklisted first and
then set to "no" if package requirements were not met.
After this patch, iptables configuration shows up correctly.
Fixes commit 3b7a227 (configure: Show support for connlabel)
Tested before and after installing the dependencies.
Signed-off-by: Shivani Bhardwaj <shivanib134@xxxxxxxxx>
---
configure.ac | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/configure.ac b/configure.ac
index c91e9e7..131bc8b 100644
--- a/configure.ac
+++ b/configure.ac
@@ -173,9 +173,9 @@ if test "x$enable_connlabel" = "xyes"; then
[nfconntrack=1], [nfconntrack=0])
if test "$nfconntrack" -ne 1; then
+ enable_connlabel="no";
blacklist_modules="$blacklist_modules connlabel";
echo "WARNING: libnetfilter_conntrack not found, connlabel match will not be built";
- enable_connlabel = "no";
fi;
else
blacklist_modules="$blacklist_modules connlabel";
--
2.7.4
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
