LKML Archive on lore.kernel.org
help / color / mirror / Atom feed
* iptables problem upgrading kernel from 3.18.8 to 3.19.1
@ 2015-03-08 10:12 David R
  2015-03-08 17:55 ` Florian Westphal
  0 siblings, 1 reply; 4+ messages in thread
From: David R @ 2015-03-08 10:12 UTC (permalink / raw)
  To: netdev; +Cc: linux-kernel

I've just had an exception to my "uneventful kernel upgrade" monotony.

My boot scripts failed when setting up the firewall due to this :-

    xt_recent: hitcount (1) is larger than packets to be remembered (1)
for table xxxx

This is a completely straightforward

    iptables -A yyyy -j REJECT -p tcp --reject-with tcp-reset -m recent
--set --name xxxx --rsource

Looking at the history for xt_recent.c it looks like this was introduced
in abc86d0f99242b7f142b7cb8f90e30081dd3c256 but maybe corrected in
cef9ed86ed62eeffcd017882278bbece32001f86 ?

Whatever, 3.19.1 is still affected, it can be worked around by setting
ip_pkt_list_tot in the module parameters.

Cheers
David

^ permalink raw reply	[flat|nested] 4+ messages in thread

end of thread, other threads:[~2015-03-16 13:54 UTC | newest]

Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2015-03-08 10:12 iptables problem upgrading kernel from 3.18.8 to 3.19.1 David R
2015-03-08 17:55 ` Florian Westphal
2015-03-12 19:47   ` David Miller
2015-03-16 13:54     ` Greg KH

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).