On Wed, 2008-05-14 at 15:57 -0700, Dave wrote: > Actually, I think I might have misread your message, my eyes are > getting to me after all this compiling. I believe all of these items > you are looking for are already in the new kernel. No need to patch, > just enable them in the network settings of the kernel. I use make > menuconfig usually. > > Cheers > -Dave > I supposed that, some new modules were at kernel that never seen before (like the "nf_"), but two problems appears, so may be I must be forgetting something. 1) I use to load modules ip_conntrack_ftp, ip_conntrack_irc, ip_conntrack_tftp, ip_conntrack_amanda and ip_conntrack_sip; but there aren't modules like nf_conntrack_amanda and so. 2) Connlimit looks like is missing something. Ex: # iptables -A FORWARD -s 10.10.28.0/24 -p tcp --dport 1024: -m connlimit --connlimit-above 50 -j REJECT --reject-with tcp-reset iptables: Invalid argument That's why I think may still need old ip_conn[track/limit] pathces. Don't I? Thanks again for your support Martin -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
