James Morris wrote:
> @@ -135,6 +175,9 @@ static int __init xt_secmark_init(void)
> {
> int err;
>
> + if (tracking_enabled())
> + need_conntrack();
> +
This will load the conntrack modules even if the track flag is not set.
Wouldn't it be better to put everything related to connection marking
in the CONNSECMARK target?
-
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to [EMAIL PROTECTED]
More majordomo info at http://vger.kernel.org/majordomo-info.html
