Re: connlimit: 2.6.24.4 + p-o-m 20080331 compile problems

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 


On Thursday 2008-04-03 16:32, Bgs wrote:


Just recompiled the latest iptables (1.4.0) from vanilla source:
root@db05:/usr/src/iptables# iptables -A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m connlimit --connlimit-above 20 --connlimit-mask 32 -j DROP 
iptables: Invalid argument
root@db05:/usr/src/iptables/root# dmesg
cannot load conntrack support for address family 2


Fix your kernel, you need connection tracking enabled. :D



--
make boldconfig -- to boldly select what no one has selected before
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux