| To: | netfilter@lists.netfilter.org |
|---|---|
| Subject: | iptables 1.3.7 doesn't properly test for condition patch |
| From: | Andrew Schulman <andrex@alumni.utexas.net> |
| Date: | Mon, 28 May 2007 07:20:57 -0400 |
| Delivered-to: | sp-com-lists@consult.net |
| Delivered-to: | netfilter-list1@securepoint.com |
| List-archive: | </pipermail/netfilter> |
| List-help: | <mailto:netfilter-request@lists.netfilter.org?subject=help> |
| List-id: | General discussion and user questions <netfilter.lists.netfilter.org> |
| List-post: | <mailto:netfilter@lists.netfilter.org> |
| List-subscribe: | <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe> |
| List-unsubscribe: | <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe> |
| Sender: | netfilter-bounces@lists.netfilter.org |
I have kernel 2.6.21, iptables 1.3.7, and pom-ng 20070527. I run ./runme --download --batch condition and the patch applies successfully. But when I build iptables, the condition extension isn't included. This is because iptables-1.3.7/extensions/.condition-test tests for the existence of $KERNEL_DIR/include/linux/netfilter_ipv4/ipt_condition.h But the condition patch doesn't create that file any more; it now creates $KERNEL_DIR/include/linux/netfilter/xt_condition.h I guess that .condition-test needs to check for the kernel version that it's being built against before deciding which header file it wants to look for. Thanks, Andrew. |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Re: DNAT rule requires extra firewall pinhole, Pascal Hambourg |
|---|---|
| Next by Date: | Re: Default deny rule, Gopinath |
| Previous by Thread: | DNAT rule requires extra firewall pinhole, Jeff Weber |
| Next by Thread: | Re: iptables 1.3.7 doesn't properly test for condition patch, Andrew Schulman |
| Indexes: | [Date] [Thread] [Top] [All Lists] |