[WarheadsSE]

Ok, IP4/6?

Remember, they aren't marked by their end module name when I am doing the kernel config...

[wlightw]

It's ipv4.

when I run shorewall now, it says

"Loading Modules...
ERROR: Your kernel/iptables do not include state match support. No version of Shorewall will run on this system
"

[WarheadsSE]

I think I dug it all up. I am compiling modules now. I will get back to you on which ones pop in.

[wlightw]

WarheadsSE: have you got a chance to complete the compiling? looks like there are some other modules missing, like nat. Below are the list of files from kernel version 2.6.38 folder.

$this->bbcode_second_pass_code('', '[root@Arch Linux ARM install netfilter]# ls
arp_tables.ko.gz ipt_addrtype.ko.gz nf_nat_ftp.ko.gz
arpt_mangle.ko.gz ipt_ah.ko.gz nf_nat_h323.ko.gz
arptable_filter.ko.gz ipt_ecn.ko.gz nf_nat_irc.ko.gz
ip_tables.ko iptable_filter.ko.gz nf_nat_pptp.ko.gz
ipt_ECN.ko.gz iptable_mangle.ko.gz nf_nat_proto_dccp.ko.gz
ipt_LOG.ko.gz iptable_nat.ko nf_nat_proto_gre.ko.gz
ipt_MASQUERADE.ko.gz iptable_raw.ko.gz nf_nat_proto_sctp.ko.gz
ipt_NETMAP.ko.gz nf_conntrack_ipv4.ko.gz nf_nat_proto_udplite.ko.gz
ipt_REDIRECT.ko.gz nf_defrag_ipv4.ko.gz nf_nat_sip.ko.gz
ipt_REJECT.ko.gz nf_nat.ko.gz nf_nat_snmp_basic.ko.gz
ipt_ULOG.ko.gz nf_nat_amanda.ko.gz nf_nat_tftp.ko.gz
')

[tux]

Yep that worked. iptables is now running.

However moblock still doesn't work so looking to compile a new kernel. Following DePingus post viewtopic.php?f=16&t=120&start=10

have problems with the compile so post a new topic re it.

Thanks WarheadsSE.

[wlightw]

tux: I think current iptable kernel module is not complete. See my previous post from kernel 2.6.38. Some components like "nat" are still missing. I am trying to use shorewall as a firewall on my Pogo, but it won't start due to the missing kernel modules.

WarheadsSE: could you help to compile it again?

[WarheadsSE]

Yeah,

I believe NAT requires in-kernel changes that can't be simply modified.

Allow me to complete my work on kexecboot, and we'll have this whole problem sorted out, faster then.. well. A hell of a lot faster.

[wlightw]

thanks much! You are a pro!

[tux]

$this->bbcode_second_pass_quote('wlightw', 't')ux: I think current iptable kernel module is not complete. See my previous post from kernel 2.6.38. Some components like "nat" are still missing. I am trying to use shorewall as a firewall on my Pogo, but it won't start due to the missing kernel modules.

[WarheadsSE]

No, it will work.

As for compiling the kernel, try it out with a zImage kernel and kexec, DO NOT just write to nand..