It works perfectly. I can't believe it's this easy! I removed the bluetooth and wifi stuff, and added openvpn.  I think I am ready to try and make my own recipe for our custom network software!

On Tue, Aug 21, 2012 at 7:32 AM, Adam Lee <adam.yh.lee@gmail.com> wrote:
Can't test it at the moment, but it should look like this:

RRECOMMENDS_${PN} = "\
    ${MACHINE_EXTRA_RRECOMMENDS} \
    ${@base_contains("MACHINE_FEATURES", "usbhost", "usbutils", "", d)} \
    ${@base_contains("MACHINE_FEATURES", "alsa", "alsa-utils-alsamixer", "", d)} \
    ${@base_contains("MACHINE_FEATURES", "usbgadget", "kernel-module-g-ether kernel-module-g-serial kernel-module-g-mass-storage", "", d)} \
    \
    ${@base_contains("DISTRO_FEATURES", "bluetooth", "bluez4", "", d)} \
    ${@base_contains("DISTRO_FEATURES", "wifi", "iw wpa-supplicant", "", d)} \
    \
    tzdata \
    \
    cpufrequtils \
    htop \
   iptables \

OR, if the above didn't work, try this:

RDEPENDS_${PN} = "\
    ${TASK_BASIC_SSHDAEMON} \
    avahi-daemon avahi-utils avahi-systemd \
    systemd-compat-units \
    iptables \

    "
On Mon, Aug 20, 2012 at 10:58 PM, Nick Wernicke <nick.wernicke@gmail.com> wrote:
I believe that the file that gets run to include all of the 'basic' functionality in the angstrom openembedded environment is task-basic.bb

From what I have read, I believe the string " iptables " goes in here somewhere.  I jsut don't know where.

Here are the contents of task basic:

# This recipe is intended as a 'simpler' replacement for task-base.
# Please communicate your use cases and suggestions to the mailinglist(s)

DESCRIPTION = "Basic task to get a device online"
LICENSE = "MIT"
LIC_FILES_CHKSUM = "file://${COREBASE}/LICENSE;md5=3f40d7994397109285ec7b81fdeb3b58"

PR = "r8"

inherit task

# packages which content depend on MACHINE_FEATURES need to be MACHINE_ARCH
#
PACKAGE_ARCH = "${MACHINE_ARCH}"

# Poke extra recomendations into the list using your machine.conf
#
MACHINE_EXTRA_RRECOMMENDS ?= ""

#
# Select between dropbear and openssh
# Set TASK_BASIC_SSHDAEMON = "openssh-sshd openssh-sftp openssh-sftp-server" in your DISTRO config to get openssh(d)
#
TASK_BASIC_SSHDAEMON ?= "dropbear-systemd openssh-sftp openssh-sftp-server"

#
# The section below is designed to match with task-boot, but doesn't depend on it to allow for more freedom
# when writing image recipes.
# It also avoids the choice between connman/networkmanager/ifupdown since that is an image feature, not a
# distro feature.
#
# Util-linux (u)mount is included because the busybox one can't handle /etc/mtab being symlinked to /proc/mounts
#
RDEPENDS_${PN} = "\
    ${TASK_BASIC_SSHDAEMON} \
    avahi-daemon avahi-utils avahi-systemd \
    systemd-compat-units \
    "

#
# The following section is split in 3:
#   1) Machine features: kernel modules and userspace helpers for those
#   2) Distro features: packages associated with those
#   3) Nice to have: packages that are nice to have, but aren't strictly needed 
#
RRECOMMENDS_${PN} = "\
    ${MACHINE_EXTRA_RRECOMMENDS} \
    ${@base_contains("MACHINE_FEATURES", "usbhost", "usbutils", "", d)} \
    ${@base_contains("MACHINE_FEATURES", "alsa", "alsa-utils-alsamixer", "", d)} \
    ${@base_contains("MACHINE_FEATURES", "usbgadget", "kernel-module-g-ether kernel-module-g-serial kernel-module-g-mass-storage", "", d)} \
    \
    ${@base_contains("DISTRO_FEATURES", "bluetooth", "bluez4", "", d)} \
    ${@base_contains("DISTRO_FEATURES", "wifi", "iw wpa-supplicant", "", d)} \
    \
    tzdata \
    \
    cpufrequtils \
    htop \

    "

On Mon, Aug 20, 2012 at 1:18 PM, Adam Lee <adam.yh.lee@gmail.com> wrote:
I don't have openembedded-core, so I can't be sure 100%, but yes I'd put it in task-base.bb 
If you post the contents of the .bb file, I can give you a more definite answer

Adam Lee


On Mon, Aug 20, 2012 at 12:59 PM, Nick Wernicke <nick.wernicke@gmail.com> wrote:
So, I believe I am supposed to add " iptables " to one of the lists in one of the thousands of files in the various meta- directories.  Is that right? The things is, I don't know which file I am supposed to edit.  Would I add it to task-base.bb in the openembedded-core folder?

On Aug 19, 2012, at 10:05 AM, Adam Lee <adam.yh.lee@gmail.com> wrote:

Great! I had no idea =)

On Sun, Aug 19, 2012 at 9:39 AM, Steve Sakoman <sakoman@gmail.com> wrote:
On Sun, Aug 19, 2012 at 8:01 AM, Adam Lee <adam.yh.lee@gmail.com> wrote:
> I just checked and the iptables module can be successfully built by running
> 'bitbake iptables'. As long as you have the meta layer (if you have a
> directory named 'meta' in your Yocto Project that is), it should build fine.
> If it does, you can add the recipe into your image, and bitbake the image
> again.

Actually "bitbake iptables" just builds the user space iptables
utilities and associated libraries.

You would still need to have a kernel build that includes the required
modules (list below from the iptables recipe):

RRECOMMENDS_${PN} = "kernel-module-x-tables \
                     kernel-module-ip-tables \
                     kernel-module-iptable-filter \
                     kernel-module-iptable-nat \
                     kernel-module-nf-defrag-ipv4 \
                     kernel-module-nf-conntrack \
                     kernel-module-nf-conntrack-ipv4 \
                     kernel-module-nf-nat \
                     kernel-module-ipt-masquerade"

Steve

> On Sat, Aug 18, 2012 at 12:18 PM, Nick Wernicke <nick.wernicke@gmail.com>
> wrote:
>>
>> Hello all, does anyone know where I can find a console image for an overo
>> water that includes the iptables module?  I tried to figure out
>> openembedded, and I can build the basic images, but I have no idea how to
>> add extra kernel modules I need.  I just need an image with iptables for a
>> demo at work on Monday.
>>
>>
>> ------------------------------------------------------------------------------
>> Live Security Virtual Conference
>> Exclusive live event will cover all the ways today's security and
>> threat landscape has changed and how IT managers can respond. Discussions
>> will include endpoint security, mobile security and the latest in malware
>> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
>> _______________________________________________
>> gumstix-users mailing list
>> gumstix-users@lists.sourceforge.net
>> https://lists.sourceforge.net/lists/listinfo/gumstix-users
>
>
>
> ------------------------------------------------------------------------------
> Live Security Virtual Conference
> Exclusive live event will cover all the ways today's security and
> threat landscape has changed and how IT managers can respond. Discussions
> will include endpoint security, mobile security and the latest in malware
> threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
> _______________________________________________
> gumstix-users mailing list
> gumstix-users@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/gumstix-users
>

------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
gumstix-users mailing list
gumstix-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/gumstix-users

------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
gumstix-users mailing list
gumstix-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/gumstix-users

------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
gumstix-users mailing list
gumstix-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/gumstix-users



------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
gumstix-users mailing list
gumstix-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/gumstix-users



------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
gumstix-users mailing list
gumstix-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/gumstix-users



------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
gumstix-users mailing list
gumstix-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/gumstix-users