On Wed, 22 Nov 2006, Andy Furniss wrote: > Paul Reilly wrote: > > In recent kernels, 2.6.16.x there is no longer any > > > > net/ipv4/netfilter/ipt_physdev.c > > > > and no option in kernel config to enable CONFIG_NETFILTER_XT_MATCH_PHYSDEV > > So I have no physdev in /proc/net/ip_tables_matches > > and my rules which include a -m physdev fail with: > > > > iptables: No chain/target/match by that name > > > > Has PHYSDEV been moved somewhere else? > > How do I enable it? > > > > Paul > > > > > > It's there in 17 & 19 somewhere :-) > > grep -i phy /boot/config-2.6.19-rc6 > ... > CONFIG_NETFILTER_XT_MATCH_PHYSDEV=m > ... if you have a kernel source tree, just pop into "make menuconfig" and do a search for any matching options: /physdev Symbol: NETFILTER_XT_MATCH_PHYSDEV [=m] Prompt: "physdev" match support Defined at net/netfilter/Kconfig:368 Depends on: NET && NETFILTER && NETFILTER_XTABLES && BRIDGE && ... etc etc ... rday
