+menu "iptables.......................... IPv4 / IPv6 firewall administration"
+
+config BR2_COMPILE_IPTABLES
+ bool
+ default n
+ depends BR2_PACKAGE_IPTABLES || BR2_PACKAGE_IP6TABLES
+
config BR2_PACKAGE_IPTABLES
- tristate "iptables"
+ prompt "iptables.......................... IPv4 firewall administration tool"
+ tristate
default y
+ select BR2_COMPILE_IPTABLES
help
- Linux kernel (2.4+) firewall, NAT, and packet mangling tools.
-
+ IPv4 firewall, NAT, and packet mangling tools.
+
http://www.iptables.org/
-config BR2_PACKAGE_IPTABLES_UTILS
- tristate "save and restore"
+config BR2_PACKAGE_IPTABLES_EXTRA
+ prompt "iptables-extra.................. Extra Iptables extensions for IPv4 firewalling (meta-package)"
+ tristate
default m if CONFIG_DEVEL
depends BR2_PACKAGE_IPTABLES
+ select BR2_PACKAGE_KMOD_IPTABLES_EXTRA
+ select BR2_PACKAGE_IPTABLES_MOD_CONNTRACK
+ select BR2_PACKAGE_IPTABLES_MOD_EXTRA
+ select BR2_PACKAGE_IPTABLES_MOD_FILTER
+ select BR2_PACKAGE_IPTABLES_MOD_IMQ
+ select BR2_PACKAGE_IPTABLES_MOD_IPOPT
+ select BR2_PACKAGE_IPTABLES_MOD_IPSEC
+ select BR2_PACKAGE_IPTABLES_MOD_NAT
+ select BR2_PACKAGE_IPTABLES_MOD_ULOG
help
- iptables-save and iptables-restore
+ Extra Iptables extensions for IPv4 firewalling (meta-package)
-config BR2_PACKAGE_IPTABLES_EXTRA
- tristate "extra modules"
+config BR2_PACKAGE_IPTABLES_MOD_CONNTRACK
+ prompt "iptables-mod-conntrack.......... Iptables extensions for connection tracking"
+ tristate
default m if CONFIG_DEVEL
depends BR2_PACKAGE_IPTABLES
+ select BR2_PACKAGE_KMOD_IPT_CONNTRACK
help
- Extra modules for iptables (kernel and user space)
+ Iptables (IPv4) extensions for connection tracking
-config BR2_PACKAGE_IP6TABLES
- tristate "ip6tables"
+ Includes:
+ * libipt_conntrack
+ * libipt_helper
+ * libipt_connmark/CONNMARK
+
+config BR2_PACKAGE_IPTABLES_MOD_FILTER
+ prompt "iptables-mod-filter............. Iptables extension for packet content inspection"
+ tristate
default m if CONFIG_DEVEL
depends BR2_PACKAGE_IPTABLES
- select BR2_PACKAGE_KMOD_IPV6
+ select BR2_PACKAGE_KMOD_IPT_FILTER
+ help
+ Iptables (IPv4) extension for packet content inspection
+
+ Includes:
+ * libipt_ipp2p
+ * libipt_layer7
+
+config BR2_PACKAGE_IPTABLES_MOD_IMQ
+ prompt "iptables-mod-imq................ Iptables extensions for Intermediate Queuing Device QoS-support"
+ tristate
+ default m if CONFIG_DEVEL
+ depends BR2_PACKAGE_IPTABLES
+ select BR2_PACKAGE_KMOD_IMQ
+ help
+ Iptables (IPv4) extensions for Intermediate Queuing Device QoS-support
+
+ Includes:
+ * libipt_IMQ
+
+config BR2_PACKAGE_IPTABLES_MOD_IPOPT
+ prompt "iptables-mod-ipopt.............. Iptables extensions for matching/changing IP packet options"
+ tristate
+ default m if CONFIG_DEVEL
+ depends BR2_PACKAGE_IPTABLES
+ select BR2_PACKAGE_KMOD_IPT_IPOPT
+ help
+ Extra Iptables (IPv4) extensions for matching/changing IP packet options
+
+ Includes:
+ * libipt_dscp/DSCP
+ * libipt_ecn/ECN
+ * libipt_length
+ * libipt_mac
+ * libipt_tos/TOS
+ * libipt_tcpmms
+ * libipt_ttl/TTL
+ * libipt_unclean
+
+config BR2_PACKAGE_IPTABLES_MOD_IPSEC
+ prompt "iptables-mod-ipsec.............. Iptables extensions for matching special IPsec packets"
+ tristate
+ default m if CONFIG_DEVEL
+ depends BR2_PACKAGE_IPTABLES
+ select BR2_PACKAGE_KMOD_IPT_IPSEC
+ help
+ Iptables (IPv4) extensions for matching special IPsec packets
+
+ Includes:
+ * libipt_ah
+ * libipt_esp
+
+config BR2_PACKAGE_IPTABLES_MOD_NAT
+ prompt "iptables-mod-nat................ Iptables extensions for different NAT targets"
+ tristate
+ default m if CONFIG_DEVEL
+ depends BR2_PACKAGE_IPTABLES
+ select BR2_PACKAGE_KMOD_IPT_NAT
+ help
+ Iptables (IPv4) extensions for different NAT targets
+
+ Includes:
+ * libipt_REDIRECT
+
+config BR2_PACKAGE_IPTABLES_MOD_ULOG
+ prompt "iptables-mod-ulog............... Iptables extensions for user-space packet logging"
+ tristate
+ default m if CONFIG_DEVEL
+ depends BR2_PACKAGE_IPTABLES
+ select BR2_PACKAGE_KMOD_IPT_ULOG
+ help
+ Iptables (IPv4) extensions for user-space packet logging
+
+ Includes:
+ * libipt_ULOG
+
+config BR2_PACKAGE_IPTABLES_MOD_EXTRA
+ prompt "iptables-mod-extra.............. Other extra Iptables extensions"
+ tristate
+ default m if CONFIG_DEVEL
+ depends BR2_PACKAGE_IPTABLES
+ select BR2_PACKAGE_KMOD_IPT_EXTRA
help
- IPv6 firewalling
+ Other extra Iptables (IPv4) extensions
+ Includes:
+ * libipt_limit
+ * libipt_owner
+ * libipt_physdev
+ * libipt_pkttype
+ * libipt_recent
+
+config BR2_PACKAGE_IPTABLES_UTILS
+ prompt "iptables-utils.................. Save and restore utilities"
+ tristate
+ default m if CONFIG_DEVEL
+ depends BR2_PACKAGE_IPTABLES
+ help
+ iptables-save and iptables-restore for Iptables (IPv4)
+
+ http://www.iptables.org/
+
+config BR2_PACKAGE_IP6TABLES
+ prompt "ip6tables......................... IPv6 firewall administration tool"
+ tristate
+ default m if CONFIG_DEVEL
+ select BR2_COMPILE_IPTABLES
+ select BR2_PACKAGE_KMOD_IPV6
+ help
+ IPv6 firewall, NAT, and packet mangling tools.
+
+ http://www.iptables.org/
+endmenu