- # iptables-fixed.tar.gz is made in the linux kernel build process
- @rm -rf $(DIR_APP) $(DIR_SRC)/libnfnetlink-0.0.25 $(DIR_SRC)/netfilter-layer7* $(DIR_SRC)/libnetfilter_queue-0.0.13
-
- @cd $(DIR_SRC) && tar zxf $(DIR_DL)/iptables-fixed.tar.gz
- cd $(DIR_SRC) && tar zxf $(DIR_DL)/netfilter-layer7-v2.18.tar.gz
- cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/netfilter-layer7-v2.18/iptables-1.3-for-kernel-2.6.20forward-layer7-2.18.patch
-
- cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/iptables-1.3.0-imq1.diff
- chmod +x $(DIR_APP)/extensions/.IMQ-test* $(DIR_APP)/extensions/.layer7-test*
-
- # hack to disable IPv6 compilation as the configuration variable does not work when ip6.h is present
- cd $(DIR_APP) && sed -i -e 's/DO_IPV6:=1/DO_IPV6:=0/' Makefile
- cd $(DIR_APP) && make BINDIR=/sbin MANDIR=/usr/share/man KERNEL_DIR=/usr/src/linux LIBDIR=/lib $(MAKETUNING)
- cd $(DIR_APP) && make BINDIR=/sbin MANDIR=/usr/share/man KERNEL_DIR=/usr/src/linux LIBDIR=/lib install install-devel
- cd $(DIR_APP) && cp -fva include/* /usr/include
- -mkdir /usr/include/libiptc
- cd $(DIR_APP) && cp -vf include/libiptc/{libiptc.h,ipt_kernel_headers.h} \
- /usr/include/libiptc
-
- cd $(DIR_SRC) && tar xfj $(DIR_DL)/libnfnetlink-0.0.25.tar.bz2
- cd $(DIR_SRC)/libnfnetlink-0.0.25 && ./configure --prefix=/usr
- cd $(DIR_SRC)/libnfnetlink-0.0.25 && make
- cd $(DIR_SRC)/libnfnetlink-0.0.25 && make install
-
- cd $(DIR_SRC) && tar xfj $(DIR_DL)/libnetfilter_queue-0.0.13.tar.bz2
- cd $(DIR_SRC)/libnetfilter_queue-0.0.13 && ./configure --prefix=/usr
- cd $(DIR_SRC)/libnetfilter_queue-0.0.13 && make
- cd $(DIR_SRC)/libnetfilter_queue-0.0.13 && make install
- @rm -rf $(DIR_APP) $(DIR_SRC)/libnfnetlink-0.0.25 $(DIR_SRC)/netfilter-layer7* $(DIR_SRC)/libnetfilter_queue-0.0.13
+ @rm -rf $(DIR_APP) $(DIR_SRC)/libnfnetlink-1.0.0 $(DIR_SRC)/netfilter-layer7* $(DIR_SRC)/libnetfilter_queue-0.0.17
+
+ @cd $(DIR_SRC) && tar jxf $(DIR_DL)/$(DL_FILE)
+ -cd /usr/include && patch -Np1 < $(DIR_SRC)/src/patches/iptables-1.4.6-errorno_includes.patch
+ cp -rf /usr/src/linux/include/linux/netfilter /usr/include/linux
+
+ # Layer7
+ cd $(DIR_SRC) && tar zxf $(DIR_DL)/netfilter-layer7-v2.22.tar.gz
+ cd $(DIR_APP) && cp -vf $(DIR_SRC)/netfilter-layer7-v2.22/iptables-1.4.3forward-for-kernel-2.6.20forward/* \
+ ./extensions/
+
+ # ipp2p 0.8.2-pomng
+ cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/iptables-1.4.6-ipp2p-0.8.2-pomng.patch
+
+ # imq
+ cd $(DIR_APP) && patch -Np1 < $(DIR_SRC)/src/patches/iptables-1.4.6-imq_test1.patch
+ chmod +x $(DIR_APP)/extensions/.IMQ-test*
+
+ cd $(DIR_APP) && ./configure --prefix=/usr --with-ksource=/usr/src/linux \
+ --libdir=/lib --includedir=/usr/include --enable-libipq \
+ --libexecdir=/lib --bindir=/sbin \
+ --sbindir=/sbin --mandir=/usr/share/man
+ cd $(DIR_APP) && make $(MAKETUNING)
+ cd $(DIR_APP) && make install
+
+ # Iptables doesn't install all headers
+ mkdir -p /usr/include/net/netfilter
+ cp -f $(DIR_APP)/include/net/netfilter/*.h /usr/include/net/netfilter/
+ mkdir -p /usr/include/iptables
+ cp -f $(DIR_APP)/include/iptables/*.h /usr/include/iptables/
+ cp -f $(DIR_APP)/include/iptables.h /usr/include/
+ mkdir -p /usr/include/libipulog
+ cp -f $(DIR_APP)/include/libipulog/*.h /usr/include/libipulog/
+ mkdir -p /usr/include/libiptc
+ cp -f $(DIR_APP)/include/libiptc/*.h /usr/include/libiptc/
+
+ cd $(DIR_SRC) && tar xfj $(DIR_DL)/libnfnetlink-1.0.0.tar.bz2
+ cd $(DIR_SRC)/libnfnetlink-1.0.0 && ./configure --prefix=/usr
+ cd $(DIR_SRC)/libnfnetlink-1.0.0 && make $(MAKETUNING) $(EXTRA_MAKE)
+ cd $(DIR_SRC)/libnfnetlink-1.0.0 && make install
+
+ cd $(DIR_SRC) && tar xfj $(DIR_DL)/libnetfilter_queue-0.0.17.tar.bz2
+ cd $(DIR_SRC)/libnetfilter_queue-0.0.17 && ./configure --prefix=/usr
+ cd $(DIR_SRC)/libnetfilter_queue-0.0.17 && make $(MAKETUNING) $(EXTRA_MAKE)
+ cd $(DIR_SRC)/libnetfilter_queue-0.0.17 && make install
+
+ @rm -rf $(DIR_APP) $(DIR_SRC)/libnfnetlink-1.0.0 $(DIR_SRC)/netfilter-layer7* $(DIR_SRC)/libnetfilter_queue-0.0.17