From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id DF54B198005 for ; Thu, 28 Feb 2013 03:52:39 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 4F888E072C; Thu, 28 Feb 2013 03:52:31 +0000 (UTC) Received: from mail-ea0-f180.google.com (mail-ea0-f180.google.com [209.85.215.180]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id C40EAE06C1 for ; Thu, 28 Feb 2013 03:52:29 +0000 (UTC) Received: by mail-ea0-f180.google.com with SMTP id c1so101984eaa.25 for ; Wed, 27 Feb 2013 19:52:28 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=googlemail.com; s=20120113; h=x-received:message-id:date:from:user-agent:mime-version:to:subject :references:in-reply-to:content-type:content-transfer-encoding; bh=pHYS/ZEmf+D3EaRhdGtE+V0ci0K5ss+uT2wbtiRvBmc=; b=IEUJ2TQVPYV1epAadJqh/e2PnEVnKN705+uExL2/4sg46I/T6yxaFetnsxX23TBdPr yKJof7XI4M+L5YZkUNqJTIZse5d+ANQTgDXqV64bQbHDGgV7oW92BAH672upfc45vqhv hcSTUSA+KJUds9vMzW8rSvrK1Kk6GNNM56iVhhdyP+iK2qj6e588upnZIZvU/FxuzyS4 ZnQfT6pyc+0nCEaM7AY+ukrdlsFM0jcgj8JzXwAdqidmk14X9PwGx9vFrUVSOog37sp1 /k3KcVyy42uFmYsyeECHLpA8ZnTQUCQN1YhGjCJ36+jY7qlggDQqZuTOvtWqCkPb0qns 7i7g== X-Received: by 10.15.101.204 with SMTP id bp52mr12164339eeb.31.1362023547937; Wed, 27 Feb 2013 19:52:27 -0800 (PST) Received: from [212.255.232.12] ([212.255.232.12]) by mx.google.com with ESMTPS id u44sm9618193eel.7.2013.02.27.19.52.26 (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Wed, 27 Feb 2013 19:52:27 -0800 (PST) Message-ID: <512ED47A.1060206@googlemail.com> Date: Thu, 28 Feb 2013 04:52:26 +0100 From: Tamer Higazi User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130223 Thunderbird/17.0.3 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] firehol + gentoo 3.6.11 kernel.... References: <5122D698.7090606@googlemail.com> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-15 Content-Transfer-Encoding: 7bit X-Archives-Salt: b2cf8eb3-3c25-46a5-95b1-238dc41cf382 X-Archives-Hash: 9e8995cdd1eb637d0b1ce023d18a155a Alon! you were absolutely right. What I did before rebuilding a newer kernel, is taking the config from the previoud. so, instead just building the kernel straight away, I took a look in netfilter and activated EVERYTHING (except debug and experimental modules) in the netfilter section. And it works..... Thank you! Tamer Am 19.02.2013 05:16, schrieb Alon Bar-Lev: > Yes, I use it. > Just enable all non experimental iptables settings at kernel including NAT. > Works perfectly. > > > On Tue, Feb 19, 2013 at 3:34 AM, Tamer Higazi > wrote: > > hi people! > I have used all the time "firehol" (gentoo sources 3.3.8) to make my > firewall rules. After kernel 3.4.x I can't make use of it any more. > > Has anyone of you got firehol running on a genoo system with a 3.4.x > kernel above to run? > And if not, can you adivse me something similiar to build linux firewall > rules ?! > > For a short reply I would thank you. > > > > Tamer > >