Morning all, When emerging shorewall-5.2.1.1 I get an error from the kernel settings check:
CONFIG_NF_CONNTRACK_IPV4: is not set when it should be. This is with gentoo-sources-4.19.1. And indeed there is no such kernel parameter: $ grep CONFIG_NF_CONNTRACK /usr/src/linux/.config CONFIG_NF_CONNTRACK=m <<< Note # CONFIG_NF_CONNTRACK_MARK is not set CONFIG_NF_CONNTRACK_SECMARK=y # CONFIG_NF_CONNTRACK_ZONES is not set CONFIG_NF_CONNTRACK_PROCFS=y # CONFIG_NF_CONNTRACK_EVENTS is not set # CONFIG_NF_CONNTRACK_TIMEOUT is not set # CONFIG_NF_CONNTRACK_TIMESTAMP is not set # CONFIG_NF_CONNTRACK_LABELS is not set # CONFIG_NF_CONNTRACK_AMANDA is not set CONFIG_NF_CONNTRACK_FTP=m # CONFIG_NF_CONNTRACK_H323 is not set CONFIG_NF_CONNTRACK_IRC=m # CONFIG_NF_CONNTRACK_NETBIOS_NS is not set # CONFIG_NF_CONNTRACK_SNMP is not set # CONFIG_NF_CONNTRACK_PPTP is not set # CONFIG_NF_CONNTRACK_SANE is not set CONFIG_NF_CONNTRACK_SIP=m # CONFIG_NF_CONNTRACK_TFTP is not set On another box with gentoo sources 4.14.78 I get this: $ grep CONFIG_NF_CONNTRACK_IP /usr/src/linux/.config CONFIG_NF_CONNTRACK_IPV4=y CONFIG_NF_CONNTRACK_IPV6=y So far I've been ignoring the error, assuming that the entry I've noted above now combines IPV4 and IPV6. Does the panel think this is worth a bug report against shorewall? -- Regards, Peter.
