Re: connlimit: 2.6.24.4 + p-o-m 20080331 compile problems

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 


I have this in the kernel:

CONFIG_NF_CONNTRACK_ENABLED=y
CONFIG_NF_CONNTRACK=y


Jan Engelhardt wrote:


On Thursday 2008-04-03 16:32, Bgs wrote:


Just recompiled the latest iptables (1.4.0) from vanilla source:
root@db05:/usr/src/iptables# iptables -A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -m connlimit --connlimit-above 20 --connlimit-mask 32 -j DROP 
iptables: Invalid argument
root@db05:/usr/src/iptables/root# dmesg
cannot load conntrack support for address family 2


Fix your kernel, you need connection tracking enabled. :D




--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux