Remove iptables modules

With Linux 6.12, some of the iptables modules are no longer directly
selectable, leading to a failure to build the module loader. We don't
need them anyway as we use nftables, so remove them.

modules/firewall/default.nix

@@ -21,9 +21,6 @@ let
       "nft_fib_ipv6"
       "nf_log_syslog"
 
-      "ip6_tables"
-      "ip_tables"
-      "iptable_nat"
       "nf_conntrack"
       "nf_defrag_ipv4"
       "nf_defrag_ipv6"
@@ -45,10 +42,6 @@ let
       "nft_reject_inet"
       "nft_reject_ipv4"
       "nft_reject_ipv6"
-      "x_tables"
-      "xt_MASQUERADE"
-      "xt_nat"
-      "xt_tcpudp"
     ];
   };
 in
@@ -110,11 +103,6 @@ in
 
       NETLINK_DIAG = "y";
 
-      IP6_NF_IPTABLES = "m";
-      IP_NF_IPTABLES = "m";
-      IP_NF_NAT = "m";
-      IP_NF_TARGET_MASQUERADE = "m";
-
       NFT_CT = "m";
       NFT_FIB_IPV4 = "m";
       NFT_FIB_IPV6 = "m";