netfilter: Make legacy configs user selectable (6c959fd5) · Commits · git / linux-nf

net/bridge/netfilter/Kconfig

+7 −1

Original line number	Diff line number	Diff line
		@@ -41,7 +41,13 @@ config NF_CONNTRACK_BRIDGE

		# old sockopt interface and eval loop
		config BRIDGE_NF_EBTABLES_LEGACY
		tristate
		tristate "Legacy EBTABLES support"
		depends on BRIDGE && NETFILTER_XTABLES
		default n
		help
		Legacy ebtables packet/frame classifier.
		This is not needed if you are using ebtables over nftables
		(iptables-nft).

		menuconfig BRIDGE_NF_EBTABLES
		tristate "Ethernet Bridge tables (ebtables) support"

+14 −2

Original line number	Diff line number	Diff line
		@@ -12,7 +12,13 @@ config NF_DEFRAG_IPV4

		# old sockopt interface and eval loop
		config IP_NF_IPTABLES_LEGACY
		tristate
		tristate "Legacy IP tables support"
		default n
		select NETFILTER_XTABLES
		help
		iptables is a legacy packet classifier.
		This is not needed if you are using iptables over nftables
		(iptables-nft).

		config NF_SOCKET_IPV4
		tristate "IPv4 socket lookup support"
		@@ -318,7 +324,13 @@ endif # IP_NF_IPTABLES

		# ARP tables
		config IP_NF_ARPTABLES
		tristate
		tristate "Legacy ARPTABLES support"
		depends on NETFILTER_XTABLES
		default n
		help
		arptables is a legacy packet classifier.
		This is not needed if you are using arptables over nftables
		(iptables-nft).

		config NFT_COMPAT_ARP
		tristate

+8 −1

Original line number	Diff line number	Diff line
		@@ -8,7 +8,14 @@ menu "IPv6: Netfilter Configuration"

		# old sockopt interface and eval loop
		config IP6_NF_IPTABLES_LEGACY
		tristate
		tristate "Legacy IP6 tables support"
		depends on INET && IPV6
		select NETFILTER_XTABLES
		default n
		help
		ip6tables is a legacy packet classifier.
		This is not needed if you are using iptables over nftables
		(iptables-nft).

		config NF_SOCKET_IPV6
		tristate "IPv6 socket lookup support"