[CentOS] Centos VPS Kernel 2.6.35.4 & 'string-less' IP tables

Wed Aug 31 13:35:27 UTC 2011
Karanbir Singh <mail-lists at karan.org>

On 08/31/2011 12:10 PM, Walter Haidinger wrote:
> PS: To install iptables from source is pretty straightforward:
>      get the tarball from netfilter.org, unpack and run:
>      ./configure --prefix=/opt/iptables&&  make&&  make install

And at that point you lose. All management capability or the ability to 
audit / track or even upgrade along the distro. Installing from source, 
is almost always the wrong solution; There are *some* places where it 
might be a workable solution, but really do you want your first line of 
machine defence to be from source ? Just the amount of effort needed to 
make something like that work is huge.

- KB