| View previous topic :: View next topic |
| Author |
Message |
Tzuriel
Apprentice
Joined: 01 Jun 2004
Posts: 260
|
 Posted: Fri Dec 01, 2023 7:56 pm Post subject: [Solved] Can't find CONFIG_NETFILTER_XT_MATCH_COMMENT |
 |
|
I'm looking for the following flag in gentoo-sources 6.1. 57.
| Code: | | CONFIG_NETFILTER_XT_MATCH_COMMENT |
I'm trying to get some virtualization support and am told I need this in the kernel, yet I cannot find it even though when I do a '/' to search a 'make menuconfig', I see the following.
| Code: | CONFIG_NETFILTER_XT_MATCH_COMMENT
-> Networking support (NET [=y])
-> Networking options
-> Network packet filtering framework (Netfilter)
-> Core Netfilter Configuration
-> Netfilter Xtables support (required for ip_tables)
-> "comment" match support
|
I have followed this hierarch, but I do not see the flag listed.
Thoughts?
Last edited by Tzuriel on Fri Dec 01, 2023 8:31 pm; edited 1 time in total |
|
| Back to top |
|
 |
Hu
Administrator
Joined: 06 Mar 2007
Posts: 23091
|
| Posted: Fri Dec 01, 2023 8:11 pm Post subject: |
|
|
Comment support is not required for virtualization. At worst, there may be some management frontend that wants to leave comments. The hypervisor itself should not care. What told you that you need this?
It looks like you did find that option. Are you not able to enable it? |
|
| Back to top |
|
|
Tzuriel
Apprentice
Joined: 01 Jun 2004
Posts: 260
|
| Posted: Fri Dec 01, 2023 8:14 pm Post subject: |
|
|
I am trying to run Incus (a fork of LXD), and at the point of trying to add something to iptables, it failed. So the maintainer said I needed that support in it.
The search found it, but it was not listed in the hierarchy when I look in that location. So no, I was not able to enable it. |
|
| Back to top |
|
|
grknight
Retired Dev
Joined: 20 Feb 2015
Posts: 2005
|
| Posted: Fri Dec 01, 2023 8:26 pm Post subject: |
|
|
That option depends on the following one being active: | Code: | config NETFILTER_ADVANCED
bool "Advanced netfilter configuration"
depends on NETFILTER
default y
help
If you say Y here you can select between all the netfilter modules.
If you say N the more unusual ones will not be shown and the
basic ones needed by most people will default to 'M'.
If unsure, say Y. |
|
|
| Back to top |
|
|
Tzuriel
Apprentice
Joined: 01 Jun 2004
Posts: 260
|
| Posted: Fri Dec 01, 2023 8:30 pm Post subject: |
|
|
| That was it. Thank you. |
|
| Back to top |
|
|
Hu
Administrator
Joined: 06 Mar 2007
Posts: 23091
|
| Posted: Fri Dec 01, 2023 9:08 pm Post subject: |
|
|
| In my opinion, it is a bug in Incus if it fails hard over the inability to add a comment. Before you enabled the prerequisite, what was the full output of the search? It should have included at the bottom the dependency expression that was causing this not to show. |
|
| Back to top |
|
|
pietinger
Moderator
Joined: 17 Oct 2006
Posts: 5377
Location: Bavaria
|
| Posted: Fri Dec 01, 2023 10:03 pm Post subject: |
|
|
AFAIK there exists a script which configures all necessary rules in netfilter for the connection between VM and host (I cant remember which it was; but I had the same problem here in the forum before some time; cannot find it ) ... and this (silly) script wants/needs this kernel option 
_________________
https://wiki.gentoo.org/wiki/User:Pietinger |
|
| Back to top |
|
|
|
Kernel & Hardware
