[LEDE-DEV] [PATCH] conntrack: enable support for netfilter conntrack zones
Jo-Philipp Wich
jo at mein.io
Thu May 19 09:21:02 PDT 2016
Hi Alin,
I merged your patch into my staging tree at
https://git.lede-project.org/?p=lede/jow/staging.git;a=commitdiff;h=6c9231baa9c5341c6ee2e213618dcde72d42288b
Since your change lacked a proper Signed-off-by I added it on your
behalf. Please review the link above and give me your ACK, then I'll
push it to master after some compile testing.
Regards,
Jo
On 05/19/2016 09:54 AM, Alin Nastac wrote:
> Storage of such zones is provided by a nf_ct_ext struct, hence conntrack
> memory foot print will not be increased if zones are not used.
> ---
> package/kernel/linux/modules/netfilter.mk | 1 +
> 1 file changed, 1 insertion(+)
>
> diff --git a/package/kernel/linux/modules/netfilter.mk b/package/kernel/linux/modules/netfilter.mk
> index 3b623e4..4d9c116 100644
> --- a/package/kernel/linux/modules/netfilter.mk
> +++ b/package/kernel/linux/modules/netfilter.mk
> @@ -68,6 +68,7 @@ define KernelPackage/nf-conntrack
> KCONFIG:= \
> CONFIG_NETFILTER=y \
> CONFIG_NETFILTER_ADVANCED=y \
> + CONFIG_NF_CONNTRACK_ZONES=y \
> $(KCONFIG_NF_CONNTRACK)
> FILES:=$(foreach mod,$(NF_CONNTRACK-m),$(LINUX_DIR)/net/$(mod).ko)
> AUTOLOAD:=$(call AutoProbe,$(notdir $(NF_CONNTRACK-m)))
>
More information about the Lede-dev
mailing list