projects / openwrt.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
ar71xx: add default network configuration for the Bullet M
[openwrt.git] / package / kernel / modules / netfilter.mk
1
2 #
3 # Copyright (C) 2006-2008 OpenWrt.org
4 #
5 # This is free software, licensed under the GNU General Public License v2.
6 # See /LICENSE for more information.
7 #
8
9 NF_MENU:=Netfilter Extensions
10 NF_KMOD:=1
11 include $(INCLUDE_DIR)/netfilter.mk
12
13 define KernelPackage/ipt-core
14 SUBMENU:=$(NF_MENU)
15 TITLE:=Netfilter core
16 KCONFIG:=$(KCONFIG_IPT_CORE)
17 FILES:=$(foreach mod,$(IPT_CORE-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
18 AUTOLOAD:=$(call AutoLoad,40,$(notdir $(IPT_CORE-m)))
19 endef
20
21 define KernelPackage/ipt-core/description
22 Netfilter core kernel modules
23 Includes:
24 - limit
25 - LOG
26 - mac
27 - multiport
28 - TCPMSS
29 - REJECT
30 endef
31
32 $(eval $(call KernelPackage,ipt-core))
33
34
35 define KernelPackage/ipt-conntrack
36 SUBMENU:=$(NF_MENU)
37 TITLE:=Basic connection tracking modules
38 KCONFIG:=$(KCONFIG_IPT_CONNTRACK)
39 FILES:=$(foreach mod,$(IPT_CONNTRACK-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
40 AUTOLOAD:=$(call AutoLoad,41,$(notdir $(IPT_CONNTRACK-m)))
41 DEPENDS:= kmod-ipt-core
42 endef
43
44 define KernelPackage/ipt-conntrack/description
45 Netfilter (IPv4) kernel modules for connection tracking
46 Includes:
47 - state
48 endef
49
50 $(eval $(call KernelPackage,ipt-conntrack))
51
52
53 define KernelPackage/ipt-conntrack-extra
54 SUBMENU:=$(NF_MENU)
55 TITLE:=Extra connection tracking modules
56 KCONFIG:=$(KCONFIG_IPT_CONNTRACK_EXTRA)
57 FILES:=$(foreach mod,$(IPT_CONNTRACK_EXTRA-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
58 AUTOLOAD:=$(call AutoLoad,42,$(notdir $(IPT_CONNTRACK_EXTRA-m)))
59 DEPENDS:= kmod-ipt-core +kmod-ipt-conntrack
60 endef
61
62 define KernelPackage/ipt-conntrack-extra/description
63 Netfilter (IPv4) extra kernel modules for connection tracking
64 Includes:
65 - connbytes
66 - connmark/CONNMARK
67 - conntrack
68 - helper
69 - recent
70 - NOTRACK
71 endef
72
73 $(eval $(call KernelPackage,ipt-conntrack-extra))
74
75
76 define KernelPackage/ipt-filter
77 SUBMENU:=$(NF_MENU)
78 TITLE:=Modules for packet content inspection
79 KCONFIG:=$(KCONFIG_IPT_FILTER)
80 FILES:=$(foreach mod,$(IPT_FILTER-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
81 AUTOLOAD:=$(call AutoLoad,45,$(notdir $(IPT_FILTER-m)))
82 DEPENDS:=kmod-ipt-core +LINUX_2_6:kmod-textsearch
83 endef
84
85 define KernelPackage/ipt-filter/description
86 Netfilter (IPv4) kernel modules for packet content inspection
87 Includes:
88 - ipt_layer7
89 - ipt_string
90 endef
91
92 $(eval $(call KernelPackage,ipt-filter))
93
94
95 define KernelPackage/ipt-ipopt
96 SUBMENU:=$(NF_MENU)
97 TITLE:=Modules for matching/changing IP packet options
98 KCONFIG:=$(KCONFIG_IPT_IPOPT)
99 FILES:=$(foreach mod,$(IPT_IPOPT-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
100 AUTOLOAD:=$(call AutoLoad,45,$(notdir $(IPT_IPOPT-m)))
101 DEPENDS:= kmod-ipt-core
102 endef
103
104 define KernelPackage/ipt-ipopt/description
105 Netfilter (IPv4) modules for matching/changing IP packet options
106 Includes:
107 - ipt_CLASSIFY
108 - ipt_dscp/DSCP
109 - ipt_ecn/ECN
110 - ipt_length
111 - ipt_tos/TOS
112 - ipt_tcpmms
113 - ipt_ttl/TTL
114 - ipt_unclean
115 endef
116
117 $(eval $(call KernelPackage,ipt-ipopt))
118
119
120 define KernelPackage/ipt-ipsec
121 SUBMENU:=$(NF_MENU)
122 TITLE:=Modules for matching IPSec packets
123 KCONFIG:=$(KCONFIG_IPT_IPSEC)
124 FILES:=$(foreach mod,$(IPT_IPSEC-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
125 AUTOLOAD:=$(call AutoLoad,45,$(notdir $(IPT_IPSEC-m)))
126 DEPENDS:= kmod-ipt-core
127 endef
128
129 define KernelPackage/ipt-ipsec/description
130 Netfilter (IPv4) modules for matching IPSec packets
131 Includes:
132 - ipt_ah
133 - ipt_esp
134 endef
135
136 $(eval $(call KernelPackage,ipt-ipsec))
137
138
139 define KernelPackage/ipt-nat
140 SUBMENU:=$(NF_MENU)
141 TITLE:=Basic NAT targets
142 KCONFIG:=$(KCONFIG_IPT_NAT)
143 FILES:=$(foreach mod,$(IPT_NAT-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
144 AUTOLOAD:=$(call AutoLoad,42,$(notdir $(IPT_NAT-m)))
145 DEPENDS:= kmod-ipt-core +kmod-ipt-conntrack
146 endef
147
148 define KernelPackage/ipt-nat/description
149 Netfilter (IPv4) kernel modules for basic NAT targets
150 Includes:
151 - MASQUERADE
152 endef
153
154 $(eval $(call KernelPackage,ipt-nat))
155
156
157 define KernelPackage/ipt-nat-extra
158 SUBMENU:=$(NF_MENU)
159 TITLE:=Extra NAT targets
160 KCONFIG:=$(KCONFIG_IPT_NAT_EXTRA)
161 FILES:=$(foreach mod,$(IPT_NAT_EXTRA-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
162 AUTOLOAD:=$(call AutoLoad,43,$(notdir $(IPT_NAT_EXTRA-m)))
163 DEPENDS:= kmod-ipt-core +kmod-ipt-nat
164 endef
165
166 define KernelPackage/ipt-nat-extra/description
167 Netfilter (IPv4) kernel modules for extra NAT targets
168 Includes:
169 - MIRROR
170 - NETMAP
171 - REDIRECT
172 endef
173
174 $(eval $(call KernelPackage,ipt-nat-extra))
175
176
177 define KernelPackage/ipt-nathelper
178 SUBMENU:=$(NF_MENU)
179 TITLE:=Basic Conntrack and NAT helpers
180 KCONFIG:=$(KCONFIG_IPT_NATHELPER)
181 FILES:=$(foreach mod,$(IPT_NATHELPER-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
182 AUTOLOAD:=$(call AutoLoad,45,$(notdir $(IPT_NATHELPER-m)))
183 DEPENDS:= kmod-ipt-core +kmod-ipt-nat
184 endef
185
186 define KernelPackage/ipt-nathelper/description
187 Default Netfilter (IPv4) Conntrack and NAT helpers
188 Includes:
189 - conntrack_ftp
190 - nat_ftp
191 - conntrack_irc
192 - nat_irc
193 - conntrack_tftp
194 - nat_tftp
195 endef
196
197 $(eval $(call KernelPackage,ipt-nathelper))
198
199
200 define KernelPackage/ipt-nathelper-extra
201 SUBMENU:=$(NF_MENU)
202 TITLE:=Extra Conntrack and NAT helpers
203 KCONFIG:=$(KCONFIG_IPT_NATHELPER_EXTRA)
204 FILES:=$(foreach mod,$(IPT_NATHELPER_EXTRA-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
205 AUTOLOAD:=$(call AutoLoad,45,$(notdir $(IPT_NATHELPER_EXTRA-m)))
206 DEPENDS:= kmod-ipt-core +kmod-ipt-nat +LINUX_2_6:kmod-textsearch
207 endef
208
209 define KernelPackage/ipt-nathelper-extra/description
210 Extra Netfilter (IPv4) Conntrack and NAT helpers
211 Includes:
212 - ip_conntrack_amanda
213 - ip_conntrack_proto_gre
214 - ip_nat_proto_gre
215 - ip_conntrack_pptp
216 - ip_nat_pptp
217 - ip_conntrack_sip
218 - ip_nat_sip
219 - ip_nat_snmp_basic
220 endef
221
222 $(eval $(call KernelPackage,ipt-nathelper-extra))
223
224
225 define KernelPackage/ipt-imq
226 SUBMENU:=$(NF_MENU)
227 TITLE:=Intermediate Queueing support
228 KCONFIG:= \
229 CONFIG_IMQ \
230 CONFIG_IMQ_BEHAVIOR_BA=y \
231 CONFIG_IMQ_NUM_DEVS=2 \
232 CONFIG_NETFILTER_XT_TARGET_IMQ
233 FILES:= \
234 $(LINUX_DIR)/drivers/net/imq.$(LINUX_KMOD_SUFFIX) \
235 $(foreach mod,$(IPT_IMQ-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
236 AUTOLOAD:=$(call AutoLoad,45,$(notdir \
237 imq \
238 $(IPT_IMQ-m) \
239 ))
240 DEPENDS:= kmod-ipt-core
241 endef
242
243 define KernelPackage/ipt-imq/description
244 Kernel support for Intermediate Queueing devices
245 endef
246
247 $(eval $(call KernelPackage,ipt-imq))
248
249
250 define KernelPackage/ipt-queue
251 SUBMENU:=$(NF_MENU)
252 TITLE:=Module for user-space packet queueing
253 KCONFIG:=$(KCONFIG_IPT_QUEUE)
254 FILES:=$(foreach mod,$(IPT_QUEUE-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
255 AUTOLOAD:=$(call AutoLoad,45,$(notdir $(IPT_QUEUE-m)))
256 DEPENDS:= kmod-ipt-core
257 endef
258
259 define KernelPackage/ipt-queue/description
260 Netfilter (IPv4) module for user-space packet queueing
261 Includes:
262 - QUEUE
263 endef
264
265 $(eval $(call KernelPackage,ipt-queue))
266
267
268 define KernelPackage/ipt-ulog
269 SUBMENU:=$(NF_MENU)
270 TITLE:=Module for user-space packet logging
271 KCONFIG:=$(KCONFIG_IPT_ULOG)
272 FILES:=$(foreach mod,$(IPT_ULOG-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
273 AUTOLOAD:=$(call AutoLoad,45,$(notdir $(IPT_ULOG-m)))
274 DEPENDS:= kmod-ipt-core
275 endef
276
277 define KernelPackage/ipt-ulog/description
278 Netfilter (IPv4) module for user-space packet logging
279 Includes:
280 - ipt_ULOG
281 endef
282
283 $(eval $(call KernelPackage,ipt-ulog))
284
285
286 define KernelPackage/ipt-iprange
287 SUBMENU:=$(NF_MENU)
288 TITLE:=Module for matching ip ranges
289 FILES:=$(foreach mod,$(IPT_IPRANGE-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
290 AUTOLOAD:=$(call AutoLoad,45,$(notdir $(IPT_IPRANGE-m)))
291 DEPENDS:= kmod-ipt-core
292 endef
293
294 define KernelPackage/ipt-iprange/description
295 Netfilter (IPv4) module for matching ip ranges
296 Includes:
297 - ipt_IPRANGE
298 endef
299
300 $(eval $(call KernelPackage,ipt-iprange))
301
302
303 define KernelPackage/ipt-ipset
304 SUBMENU:=$(NF_MENU)
305 TITLE:=IPSET Modules
306 KCONFIG:=$(KCONFIG_IPT_IPSET)
307 FILES:=$(foreach mod,$(IPT_IPSET-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
308 AUTOLOAD:=$(call AutoLoad,45,$(notdir $(IPT_IPSET-m)))
309 DEPENDS:= kmod-ipt-core
310 endef
311
312 define KernelPackage/ipt-ipset/description
313 Netfilter kernel modules for ipset
314 Includes:
315 - ip_set
316 - ip_set_iphash
317 - ip_set_ipmap
318 - ip_set_ipporthash
319 - ip_set_ipportiphash
320 - ip_set_ipportnethash
321 - ip_set_iptree
322 - ip_set_iptreemap
323 - ip_set_macipmap
324 - ip_set_nethash
325 - ip_set_portmap
326 - ip_set_setlist
327 - ipt_set
328 - ipt_SET
329 endef
330
331 $(eval $(call KernelPackage,ipt-ipset))
332
333
334 define KernelPackage/ipt-extra
335 SUBMENU:=$(NF_MENU)
336 TITLE:=Extra modules
337 KCONFIG:=$(KCONFIG_IPT_EXTRA)
338 FILES:=$(foreach mod,$(IPT_EXTRA-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
339 AUTOLOAD:=$(call AutoLoad,45,$(notdir $(IPT_EXTRA-m)))
340 DEPENDS:= kmod-ipt-core
341 endef
342
343 define KernelPackage/ipt-extra/description
344 Other Netfilter (IPv4) kernel modules
345 Includes:
346 - ipt_owner
347 - ipt_physdev
348 - ipt_pkttype
349 - ipt_recent
350 - iptable_raw
351 - xt_NOTRACK
352 endef
353
354 $(eval $(call KernelPackage,ipt-extra))
355
356
357 define KernelPackage/ip6tables
358 SUBMENU:=$(NF_MENU)
359 TITLE:=IPv6 modules
360 DEPENDS:=+kmod-ipv6
361 KCONFIG:=$(KCONFIG_IPT_IPV6)
362 FILES:=$(foreach mod,$(IPT_IPV6-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
363 AUTOLOAD:=$(call AutoLoad,49,$(notdir $(IPT_IPV6-m)))
364 endef
365
366 define KernelPackage/ip6tables/description
367 Netfilter IPv6 firewalling support
368 endef
369
370 $(eval $(call KernelPackage,ip6tables))
371
372
373 define KernelPackage/arptables
374 SUBMENU:=$(NF_MENU)
375 TITLE:=ARP firewalling modules
376 FILES:=$(LINUX_DIR)/net/ipv4/netfilter/arp*.$(LINUX_KMOD_SUFFIX)
377 KCONFIG:=CONFIG_IP_NF_ARPTABLES \
378 CONFIG_IP_NF_ARPFILTER \
379 CONFIG_IP_NF_ARP_MANGLE
380 AUTOLOAD:=$(call AutoLoad,49,$(notdir $(patsubst %.$(LINUX_KMOD_SUFFIX),%,$(wildcard $(LINUX_DIR)/net/ipv4/netfilter/arp*.$(LINUX_KMOD_SUFFIX)))))
381 endef
382
383 define KernelPackage/arptables/description
384 Kernel modules for ARP firewalling
385 endef
386
387 $(eval $(call KernelPackage,arptables))
388
389 define KernelPackage/ebtables
390 SUBMENU:=$(NF_MENU)
391 TITLE:=Bridge firewalling modules
392 DEPENDS:=@LINUX_2_6
393 FILES:=$(foreach mod,$(EBTABLES-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
394 KCONFIG:=CONFIG_BRIDGE_NETFILTER=y \
395 $(KCONFIG_EBTABLES)
396 AUTOLOAD:=$(call AutoLoad,49,$(notdir $(EBTABLES-m)))
397 endef
398
399 define KernelPackage/ebtables/description
400 ebtables is a general, extensible frame/packet identification
401 framework. It provides you to do Ethernet
402 filtering/NAT/brouting on the Ethernet bridge.
403 endef
404
405 $(eval $(call KernelPackage,ebtables))
406
407 define KernelPackage/ebtables-ipv4
408 SUBMENU:=$(NF_MENU)
409 TITLE:=ebtables: IPv4 support
410 DEPENDS:= kmod-ebtables
411 FILES:=$(foreach mod,$(EBTABLES_IP4-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
412 KCONFIG:=$(KCONFIG_EBTABLES_IP4)
413 AUTOLOAD:=$(call AutoLoad,49,$(notdir $(EBTABLES_IP4-m)))
414 endef
415
416 define KernelPackage/ebtables-ipv4/description
417 This option adds the IPv4 support to ebtables, which allows basic
418 IPv4 header field filtering, ARP filtering as well as SNAT, DNAT targets.
419 endef
420
421 $(eval $(call KernelPackage,ebtables-ipv4))
422
423 define KernelPackage/ebtables-ipv6
424 SUBMENU:=$(NF_MENU)
425 TITLE:=ebtables: IPv6 support
426 DEPENDS:= kmod-ebtables
427 FILES:=$(foreach mod,$(EBTABLES_IP6-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
428 KCONFIG:=$(KCONFIG_EBTABLES_IP6)
429 AUTOLOAD:=$(call AutoLoad,49,$(notdir $(EBTABLES_IP6-m)))
430 endef
431
432 define KernelPackage/ebtables-ipv6/description
433 This option adds the IPv6 support to ebtables, which allows basic
434 IPv6 header field filtering and target support.
435 endef
436
437 $(eval $(call KernelPackage,ebtables-ipv6))
438
439 define KernelPackage/ebtables-watchers
440 SUBMENU:=$(NF_MENU)
441 TITLE:=ebtables: watchers support
442 DEPENDS:= kmod-ebtables
443 FILES:=$(foreach mod,$(EBTABLES_WATCHERS-m),$(LINUX_DIR)/net/$(mod).$(LINUX_KMOD_SUFFIX))
444 KCONFIG:=$(KCONFIG_EBTABLES_WATCHERS)
445 AUTOLOAD:=$(call AutoLoad,49,$(notdir $(EBTABLES_WATCHERS-m)))
446 endef
447
448 define KernelPackage/ebtables-watchers/description
449 This option adds the log watchers, that you can use in any rule
450 in any ebtables table.
451 endef
452
453 $(eval $(call KernelPackage,ebtables-watchers))
454
455 define KernelPackage/nfnetlink
456 SUBMENU:=$(NF_MENU)
457 TITLE:=Netlink-based userspace interface
458 DEPENDS:=@LINUX_2_6 +kmod-ipt-core
459 FILES:=$(LINUX_DIR)/net/netfilter/nfnetlink.$(LINUX_KMOD_SUFFIX)
460 KCONFIG:=CONFIG_NETFILTER_NETLINK
461 AUTOLOAD:=$(call AutoLoad,48,nfnetlink)
462 endef
463
464 define KernelPackage/nfnetlink/description
465 Kernel modules support for a netlink-based userspace interface
466 endef
467
468 $(eval $(call KernelPackage,nfnetlink))
469
470
471 define KernelPackage/nfnetlink-log
472 SUBMENU:=$(NF_MENU)
473 TITLE:=Netfilter LOG over NFNETLINK interface
474 DEPENDS:=@LINUX_2_6 +kmod-nfnetlink
475 FILES:=$(LINUX_DIR)/net/netfilter/nfnetlink_log.$(LINUX_KMOD_SUFFIX)
476 KCONFIG:=CONFIG_NETFILTER_NETLINK_LOG
477 AUTOLOAD:=$(call AutoLoad,48,nfnetlink_log)
478 endef
479
480 define KernelPackage/nfnetlink-log/description
481 Kernel modules support for logging packets via NFNETLINK
482 endef
483
484 $(eval $(call KernelPackage,nfnetlink-log))
485
486
487 define KernelPackage/nfnetlink-queue
488 SUBMENU:=$(NF_MENU)
489 TITLE:=Netfilter QUEUE over NFNETLINK interface
490 DEPENDS:=@LINUX_2_6 +kmod-nfnetlink
491 FILES:=$(LINUX_DIR)/net/netfilter/nfnetlink_queue.$(LINUX_KMOD_SUFFIX)
492 KCONFIG:=CONFIG_NETFILTER_NETLINK_QUEUE
493 AUTOLOAD:=$(call AutoLoad,48,nfnetlink_queue)
494 endef
495
496 define KernelPackage/nfnetlink-queue/description
497 Kernel modules support for queueing packets via NFNETLINK
498 endef
499
500 $(eval $(call KernelPackage,nfnetlink-queue))
501
502
503 define KernelPackage/nf-conntrack-netlink
504 SUBMENU:=$(NF_MENU)
505 TITLE:=Connection tracking netlink interface
506 DEPENDS:=@LINUX_2_6 +kmod-nfnetlink +kmod-ipt-conntrack
507 FILES:=$(LINUX_DIR)/net/netfilter/nf_conntrack_netlink.$(LINUX_KMOD_SUFFIX)
508 KCONFIG:=CONFIG_NF_CT_NETLINK
509 AUTOLOAD:=$(call AutoLoad,49,nf_conntrack_netlink)
510 endef
511
512 define KernelPackage/nf-conntrack-netlink/description
513 Kernel modules support for a netlink-based connection tracking
514 userspace interface
515 endef
516
517 $(eval $(call KernelPackage,nf-conntrack-netlink))
Personal OpenWRT clone
This page took 0.062101 seconds and 5 git commands to generate.