On Thu, 14 Mar 2002 20:55:57 +0100, Harald Welte <[EMAIL PROTECTED]> wrote: >On Thu, Mar 14, 2002 at 11:42:23AM +0100, Marc Haber wrote: >> I am wondering whether there are point releases for the patch-o-matic >> stuff available. I feel quite uncomfortable running the latest >> "bleeding edge" packet filter code on security relevant systems. > >I've just released iptables-1.2.6.
And the mainstream iptables releases are compatible with a patch-o-matic kernel? I thought that the iptables userland code that can be pulled from the patch-o-matic CVS has been branched? >Maybe we should unbundle patch-o-matic from the iptables userspace code >and do lots of releases for patch-o-matic. That would be a good idea, IMO. Checking out the CVS repository took almost two hours. But there are some patch-o-matic patches that patch userland code as well. >> The HOWTO mentions that I need to have "make dep" before applying the >> patch. Does the kernel need to be configured at that point? Will a >> "make clean" break the patches? > >Question 1: yes. >Question 2: no. Thanks ;) Greetings Marc P.S. H323 conntrack/NAT works like a charm with the Innovaphone ip400. -- -------------------------------------- !! No courtesy copies, please !! ----- Marc Haber | " Questions are the | Mailadresse im Header Karlsruhe, Germany | Beginning of Wisdom " | Fon: *49 721 966 32 15 Nordisch by Nature | Lt. Worf, TNG "Rightful Heir" | Fax: *49 721 966 31 29
