XT_SET netfilter module is not compiled on Slackware AArch64/ARM64, while it is compiled (as a module) in Slackware64 15.0.
Slackware ARM:
Code:
cat /usr/src/linux/.config | grep XT_SET
# CONFIG_NETFILTER_XT_SET is not set
Slackware64 15.0:
Code:
cat /usr/src/linux/.config | grep XT_SET
CONFIG_NETFILTER_XT_SET=m
AS far as I understand, it breaks ipset functionality for iptables. I tried running iptables-nft, but getting similar error.
iptables-nft:
Code:
Warning: Extension set revision 0 not supported, missing kernel module?
iptables v1.8.8 (nf_tables): Kernel module xt_set is not loaded in.
iptables:
Code:
Warning: Extension set revision 0 not supported, missing kernel module?
iptables v1.8.8 (legacy): Kernel module xt_set is not loaded in.
If I understand correctly that this is due to xtables API being deprecated and deemed legacy at this point? Then switching to iptables-nft should be in line with this change.
Would it be possible to change the kernel package in Slackware ARM64 and include this module? It is a fairly crucial module for more complicated firewall rules setup.
