I installed ufw, got message about missing support in the kernel ERROR: pretend CONFIG_NETFILTER_XT_MATCH_COMMENT: is not set when it should be. CONFIG_NETFILTER_XT_MATCH_HL: is not set when it should be. CONFIG_NETFILTER_XT_MATCH_LIMIT: is not set when it should be. CONFIG_NETFILTER_XT_MATCH_MULTIPORT: is not set when it should be. CONFIG_NETFILTER_XT_MATCH_RECENT: is not set when it should be. CONFIG_NETFILTER_XT_MATCH_ADDRTYPE: is not set when it should be. fixed that then did 'ufw enable' and 'rc-update add ufw boot', after reboot I got a message " * Starting ufw ... FATAL: Module nf_conntrack_netbios_ns not found. ip6tables-restore: line 65 failed Problem running '/etc/ufw/before6.rules' * Failed to start ufw. [ !! ] * ERROR: ufw failed to start " There are probably two or more problems because I think this is still present after adding a needed module to the kernel (ip6tables-restore: line 65 failed) ufw is installed with ipv6 -examples USE flags One small note, kernel is gentoo-sources (amd64), with default config, I just added support for hw. and fs ... basic things, didn't disable any Networking stuff, or iptables (netfilter), and later after ufw install just added what it needs to run. Reproducible: Always Steps to Reproduce: 1. install ufw 2. do 'ufw enable' and rc-update add ufw boot 3. reboot Actual Results: Got error message about missing module Expected Results: No error messages
Soon the ebuild for ufw 0.31.1 will be updated to handle checking of kernel configuration for default settings in /etc/default/ufw, line IPT_MODULES. Modules in that line are optional; if you don't need features provided by them (short description is in this file above), making the line so it looks like this: IPT_MODULES="" should make ufw able to run. Another solution is of course to tweak kernel configuration. Thanks for reporting.
Change commited to tree.
closing
