Kernel
2.6
- IPTables - je potřeba jej zapnout! - CONFIG_XTABLE + další nabídky
- povolit CONFIG_MCA a CONFIG_EISA
Debian
kompilace a instalace s L7
make mrproper- vyčistí vše zkompilované ze zdrojákůmake clean– smazání jen něčehomake-kpkg clean
patch -p1 --dry-run < kernel-2.6.25-2.6.28-layer7-2.21.patch patch -p1 < kernel-2.6.25-2.6.28-layer7-2.21.patch make menuconfig
- General Setup → [*] Prompt for development and/or incomplete code/drivers
- Networking support → Networking Options → [*] Network packet filtering framework (Netfilter) → Core Netfilter Configuration
- <M> Netfilter connection tracking support
- {M} Netfilter Xtables support (required for ip_tables)
- -*- Connection tracking flow accounting
- <M> „layer7“ match support
make-kpkg clean fakeroot make-kpkg --initrd --append-to-version=-layer7 kernel_image kernel_headers dpkg -i linux-image-2.6.28-layer7_2.6.28-layer7-10.00.Custom_i386.deb dpkg -i linux-headers-2.6.28-layer7_2.6.28-layer7-10.00.Custom_i386.deb
- do menu.lst přidat
initrd /initrd.img-2.6.8.1
odinstalování
dpkg –purge –force-remove-essential kernel-image-NNN
