shorewall problem with 2.6.20 kernel

[divined]

Hello everybody

Just a while ago I upgraded to the 2.6.20-gentoo-r6 kernel version from version 2.6.19-gentoo-r5. Unfortunately, I now have a problem with shorewall. Specifically, when I try to start it I get the error :

[terminal9]

Yes, I noticed some netfilter related changes in .20
A practical way to observe what has changed is to copy your old .config and run

[Ehnvis]

The Full Nat option that you need has been moved, and for some reason make oldconfig doesnt say anything.
Look under ipfilter configuration and add it, recompile the kernel and it should work.
_________________
HP NC 4010, Pentium-M 725 1.6GHz w/ 1Gb RAM, 60Gb Hitachi Travelstar.
Running Gentoo-2.6.21-r4 (again as 2.6.22 kernels hogs CPU), all but SD reader works fine.

[divined]

I`m looking under some netfilter options but can find nothing relative. Am I not looking in the correct subsection?

[Ehnvis]

Under IP netfilter configuration activate IPv4 connection tracking support and then Full NAT shows up under IP tables support. Add that and then recompile and everything should be fine.
_________________
HP NC 4010, Pentium-M 725 1.6GHz w/ 1Gb RAM, 60Gb Hitachi Travelstar.
Running Gentoo-2.6.21-r4 (again as 2.6.22 kernels hogs CPU), all but SD reader works fine.

[divined]

thanks. I hadn`t activated some options in the kernel config. The really odd thing is how it used to work with the 2.6.19 version kernel.

[Ehnvis]

It's not that odd, it's just the guys that writes the netfilters that are odd. Even Linus Torvalds didn't like this change and was quite mad at the developers.
_________________
HP NC 4010, Pentium-M 725 1.6GHz w/ 1Gb RAM, 60Gb Hitachi Travelstar.
Running Gentoo-2.6.21-r4 (again as 2.6.22 kernels hogs CPU), all but SD reader works fine.