Thanks for the tip ... you were right.
The main problem is, the aforementioned wiki's are not updated for the peculiarities of how netfilter was implemented in the 2.6.20 kernel, which makes following their instructions somewhat problematic. After a few more hours on the forums here, I was able to figure out how to enable the desired kernel modules, some of which had to be manually switched on in the .config vs. "make menuconfig" before they would appear ... extremely annoying.
If this helps anyone, here are the options I have enabled in my 2.6.20 kernel to enable netfilter/iptables. (Note: some of the options below may be unneeded; just haven't had the time to investigate exactly what each does in order to rule them out.)
Comments definitely welcome!)
Code: Select all
Networking --->
Networking options --->
[*] Network packet filtering framework (Netfilter) --->
Core Netfilter Configuration --->
<*> Netfilter netlink interface
<*> Netfilter NFQUEUE over NFNETLINK interface
<*> Netfilter LOG over NFNETLINK interface
[*] Connection tracking flow accounting
[*] Connection mark tracking support
[*] Connection tracking events (EXPERIMENTAL)
<*> Connection tracking netlink interface (EXPERIMENTAL)
<*> Netfilter Xtables support (required for ip_tables)
<*> "connbytes" per-connection counter match support
<*> "connmark" connection mark match support
<*> "conntrack" connection tracking match support
<*> "state" match support
<*> "helper" match support
IP: Netfilter Configuration --->
<*> IPv4 connection tracking support (required for NAT)
[*] proc/sysctl compatibility with old connection tracking
<*> IP tables support (required for filtering/masq/NAT)
< > ECN match support
<*> Packet filtering
<*> REJECT target support
<*> LOG target support
<*> Full NAT
<*> MASQUERADE target support
Cheers,
Jake
