|
Packit Service |
d1fe03 |
INCOMPATIBILITIES:
|
|
Packit Service |
d1fe03 |
|
|
Packit Service |
d1fe03 |
- The REJECT target has an '--reject-with admin-prohib' option which used
|
|
Packit Service |
d1fe03 |
with kernels that do not support it, will result in a plain DROP instead
|
|
Packit Service |
d1fe03 |
of REJECT. Use with caution.
|
|
Packit Service |
d1fe03 |
Kernels that do support it:
|
|
Packit Service |
d1fe03 |
2.4 - since 2.4.22-pre9
|
|
Packit Service |
d1fe03 |
2.6 - all
|
|
Packit Service |
d1fe03 |
|
|
Packit Service |
d1fe03 |
- There are some issues related to upgrading from 1.2.x to 1.3.x on a system
|
|
Packit Service |
d1fe03 |
with dynamic ruleset changes during runtime. (Please see
|
|
Packit Service |
d1fe03 |
https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=334).
|
|
Packit Service |
d1fe03 |
After upgrading from 1.2 to 1.3, it suggest go do an iptables-save, then
|
|
Packit Service |
d1fe03 |
iptables-restore to ensure your dynamic rule changes continue to work.
|