In order to use the LEAF firewall you will need to install the modules that will be loaded to complement your kernel. You will need one for your ethernet card(s) in particular.
Modules can be stored in two different places:
In /boot/lib/modules: these modules will be
loaded at the very begining of the boot process. This facility is used
to load drivers which will be necessary in order to be able to load the
remaining of the packages (CD-ROM, USB or harddisk drivers for examples
when you are booting off those media: cf. the "Using
Bering-uClibc with an IDE harddisk or CD-ROM drive" section of
the Bering-uClibc user's guide). Special versions of initrd.lrp provides
support to boot from CD-ROM, USB or an IDE harddisk. If you build your
own initrd.lrp, you will also need to edit
/boot/etc/modules in order to declare the sequence
of modules you want to load at this stage.
In /lib/modules: these modules are provided
by the moddb.lrp package which is loaded as any
other package. This package should provide most - if not all - of the
modules required to have the LEAF firewall working on your specific
hardware. You will also need to edit /etc/modules
in order to declare the sequence of modules you want to load.
By default, the moddb.lrp package of the LEAF Bering-uClibc firewall provides:
# ls -la -rw-r--r-- 1 root root 20676 Aug 13 21:05 8139too.o -rw-r--r-- 1 root root 8504 Aug 13 21:05 8390.o -rw-r--r-- 1 root root 4300 Aug 13 21:05 crc32.o -rw-r--r-- 1 root root 26460 Aug 13 21:05 eepro100.o -rw-r--r-- 1 root root 32174 Aug 13 21:05 ip_conntrack.o -rw-r--r-- 1 root root 5168 Aug 13 21:05 ip_conntrack_ftp.o -rw-r--r-- 1 root root 4480 Aug 13 21:05 ip_conntrack_irc.o -rw-r--r-- 1 root root 3552 Aug 13 21:05 ip_nat_ftp.o -rw-r--r-- 1 root root 3072 Aug 13 21:05 ip_nat_irc.o -rw-r--r-- 1 root root 3200 Aug 13 21:05 ipt_MASQUERADE.o -rw-r--r-- 1 root root 1736 Aug 13 21:05 ipt_REDIRECT.o -rw-r--r-- 1 root root 1880 Aug 13 21:05 ipt_conntrack.o -rw-r--r-- 1 root root 1684 Aug 13 21:05 ipt_helper.o -rw-r--r-- 1 root root 8776 Aug 13 21:05 ipt_ipp2p.o -rw-r--r-- 1 root root 1424 Aug 13 21:05 ipt_state.o -rw-r--r-- 1 root root 24555 Aug 13 21:05 iptable_nat.o -rw-r--r-- 1 root root 4204 Aug 13 21:05 mii.o -rw-r--r-- 1 root root 9308 Aug 13 21:05 n_hdlc.o -rw-r--r-- 1 root root 21716 Aug 13 21:05 natsemi.o -rw-r--r-- 1 root root 7800 Aug 13 21:05 ne2k-pci.o -rw-r--r-- 1 root root 9900 Aug 13 21:05 ppp_async.o -rw-r--r-- 1 root root 5232 Aug 13 21:05 ppp_deflate.o -rw-r--r-- 1 root root 24360 Aug 13 21:05 ppp_generic.o -rw-r--r-- 1 root root 12841 Aug 13 21:05 ppp_mppe.o -rw-r--r-- 1 root root 8092 Aug 13 21:05 ppp_synctty.o -rw-r--r-- 1 root root 11412 Aug 13 21:05 pppoe.o -rw-r--r-- 1 root root 3400 Aug 13 21:05 pppox.o -rw-r--r-- 1 root root 6360 Aug 13 21:05 slhc.o -rw-r--r-- 1 root root 4180 Aug 13 21:05 softdog.o
crc32, 8390, 8139too, eepro100, mii.o, natsemi and ne2k-pci are drivers for common network cards.
n_hdlc, ppp_generic, ppp_async, ppp_synctty, ppp_mppe, pppoe, pppox, slhc are ppp and ppp/pppoe related modules.
ip_conntrack_*,ipt_ and ip_nat_* modules are use for masquerading.
You will probably need to download other modules for your own
network card or to get access to specific functionalities (bridge.o for
bridging, ...). The whole set of Bering-uClibc linux kernel modules for
our releases is available as modules tarball at the Bering-uClibc
FRS area of sourceforge.net - the
build-modules script help's you to add new modules to
your system..