I recently tried to use the iptables time module with hardened-sources 2.6.X and I was unable to use it because itp_time.so did not exists. I looked through the kernel config and there isn't even an option for it presented (in fact, even in the .config file, I could not identify a variable for it). I found a reference on netfilter.org saying that this module is not built by default, but that it could be included through their patching system? Anyway, the time module sounds like a nice idea and I think it would be a nice option to have in the kernel for iptables users. Does anyone know how to add this to our kernels? Reproducible: Always Steps to Reproduce: 1. 2. 3.
this would require more maintenance than it's worth you should be able to find the patch here: http://www.iptables.org/projects/patch-o-matic/pom-base.html#pom-base-time it'll prob be integrated into iptables eventually
It's in the man page for iptables as if it's a standard feature.