i installed kernel 2.6.7 and modules for it like netfilter...
when i chnange back to kernel 2.4.29 - i run "lsmod"
it shows:
Module Size Used by Not tainted
ipt_REJECT 3128 4 (autoclean)
ipt_LOG 3448 10 (autoclean)
ipt_state 536 11 (autoclean)
ipt_pkttype 504 4 (autoclean)
ipt_multiport 696 4 (autoclean)
ipt_conntrack 1048 3 (autoclean)
iptable_mangle 2104 1 (autoclean)
ip_nat_irc 2064 0 (unused)
ip_nat_tftp 1712 0 (unused)
ip_nat_ftp 2544 0 (unused)
iptable_nat 16974 3 [ip_nat_irc ip_nat_tftp ip_nat_ftp]
ip_conntrack_irc 2768 1
ip_conntrack_tftp 1616 1
ip_conntrack_ftp 3632 1
ip_conntrack 18440 3 [ipt_state ipt_conntrack ip_nat_irc ip_nat_tftp ip_nat_ftp iptable_nat ip_conntrack_irc ip_conntrack_tftp ip_conntrack_ftp]
iptable_filter 1676 1
ip_tables 12000 11 [ipt_REJECT ipt_LOG ipt_state ipt_pkttype ipt_multiport ipt_conntrack iptable_mangle iptable_nat iptable_filter]

is 2.4.29 using these options... and if not can they mess up iptables??

what do you mean "is 2.4.29 using these options"??

if you don't have any use for those modules then you don't need to load them...

ip_nat_irc 2064 0 (unused)
ip_nat_tftp 1712 0 (unused)
ip_nat_ftp 2544 0 (unused)

i don't know if kernel 2.6.29 has installed these modules...

if you compiled those modules then yes, they will be installed when you do your "make modules_install"... but even if they are installed, they won't get _loaded_ until you load them yourself from a startup script somewhere... so you have obviously loaded those yourself...

tnx for answer... why are they unused??

probably because you aren't doing any IRC/TFTP/FTP NAT...

do i need this on a single cable connection??

what is lsmod showing? modules that are in use at moment of running "lsmod",
or that are loaded at boot?

i commented ipt modules in firewall's modules script and reboot:
Module Size Used by Not tainted
ipt_REJECT 3128 4 (autoclean)
ipt_LOG 3448 10 (autoclean)
ipt_state 536 11 (autoclean)
ipt_pkttype 504 4 (autoclean)
ipt_owner 1368 0 (autoclean)
ipt_recent 7908 0 (autoclean)
ipt_multiport 696 4 (autoclean)
ipt_conntrack 1048 3 (autoclean)
iptable_filter 1676 1 (autoclean)
iptable_mangle 2104 1 (autoclean)
iptable_nat 16974 0 (autoclean) (unused)
ip_conntrack 18440 0 (autoclean) [ipt_state ipt_conntrack iptable_nat]
ip_tables 12000 13 [ipt_REJECT ipt_LOG ipt_state ipt_pkttype ipt_owner ipt_recent ipt_multiport ipt_conntrack iptable_filter iptable_mangle iptable_nat]
uhci 24284 0 (unused)

what is autoclean??

it's showing modules that are currently loaded... it doesn't tell you whether they were loaded automatically at boot or if you loaded them yourself manually... if they are still getting loaded after commenting the relevant modprobes in your firewall script, then perhaps check some of your other startup scripts...

also, check your rules, cuz some modules will get loaded automatically when a rule requires them - even if you aren't actually making use of them...

as for autoclean: http://www.redhat.com/docs/manuals/l...l-modules.html

just my ...

may be firewall requires these rules...

yeah, the FTP, IRC, and TFTP modules that were getting loaded before aren't getting loaded now... i actually hadn't noticed it when i posted my previous comment... i was thinking they still were getting loaded, and since those are the types of modules that usually DO NOT get loaded automatically that's why i was telling you they would have to be getting loaded from somewhere else...

the ones that are loaded now seem fine...

good luck...

it is because i commented them out in firewall script...