LinuxQuestions.org - Compile kernel to setup firewall

- Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)

- - Compile kernel to setup firewall (https://www.linuxquestions.org/questions/linux-security-4/compile-kernel-to-setup-firewall-96044/)

andy18

09-23-2003 05:03 PM

Compile kernel to setup firewall

Hi,

recently I have upgraded the kernel from 2.4.20-20.8 to 2.4.22 by using back my old kernel config.

I am now try to learn setup firewall on my local LAN using the new kernel.Is there an easier way to compile the kernel for the firewall option enabled in the new kernel without going through the "make config" answering the Q&A ?

andy18

09-23-2003 05:12 PM

I tried browse to the directory /2.4.22 and pico .config but I was not able to get the option CONFIG_FIREWALL in the config file.Shouldn't that this option should be available since the my last kernel version is 2.4.20-20.8?Most of the option which required for setting up the firewall is not available as well..:confused:

thank you for answering this cause this is the first time I try to setup a firewall in linux :D

:newbie:

unSpawn

09-23-2003 05:31 PM

If I egrep /usr/src/linux/.config -ie "(netfil|iptab)" I get all the Netfilter and iptables entries, but no "CONFIG_FIREWALL".
Are these kernels provided by your distribution (patched kernel), or are they kernel.org kernels (clean)?

andy18

09-23-2003 05:40 PM

hi unspawn,

the clean installation of the RH8.0 came with kernel 2.4.18 and I downloaded the rpm for 2.4.20-20.8 from the redhat website and perform the upgrade.

the .config is the file that I get after I run the make oldconfig in the 2.4.20-20.8 before I upgrade the kernel to 2.4.22.

Executing the above command as you provided in /2.4.22 directory returns this result :

CONFIG_NETFILTER=y
# CONFIG_NETFILTER_DEBUG is not set
# IP: Netfilter Configuration
CONFIG_IP_NF_IPTABLES=m
# IPv6: Netfilter Configuration
CONFIG_IP6_NF_IPTABLES=m

As far as I know ( after googling), I noticed that there should be a CONFIG_FIREWALL option available in the .config file but it was not there...

thanks,

andy18

09-23-2003 06:44 PM

I just did a futher research and seems like CONFIG_NETFILTER had replace CONFIG_FIREWALL in kernel 2.4.x , am I right ?

any suggestion tutorial I may refer to to setup the firewall from scratch ( more details tutorial will be preferable coz I am new in this firewall setup :D )...

thanks

andy18

09-24-2003 03:46 PM

any one?

unSpawn

09-24-2003 06:24 PM

Lotsa ways to start. Search LQ, see the Netfilter site, read the docs that came with your distro, read the "FAQ: Security references" in this forum.

All times are GMT -5. The time now is 08:48 AM.