From mboxrd@z Thu Jan 1 00:00:00 1970 From: "jelenkovic" Subject: iptables error Date: Tue, 12 Nov 2002 01:07:34 +0100 Sender: netfilter-admin@lists.netfilter.org Message-ID: <001201c289df$80e81180$286bfea9@OBLIVION> Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_000F_01C289E7.E273DD50" Return-path: Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: To: netfilter@lists.netfilter.org This is a multi-part message in MIME format. ------=_NextPart_000_000F_01C289E7.E273DD50 Content-Type: text/plain; charset="iso-8859-2" Content-Transfer-Encoding: quoted-printable ok i'm having problems with the new iptables and 1.4.19 kernel. here is the log error: Nov 11 04:55:29 BAKER kernel: ASSERT ip_conntrack_core.c:1063 = &ip_conntrack_lock not readlocked Nov 11 04:55:29 BAKER kernel: ASSERT: ip_nat_core.c:839 = &ip_conntrack_lock not readlocked and then this is what happens later at some point: Nov 11 20:57:58 BAKER kernel: IPTABLES Dead Input: IN=3Deth0 OUT=3D = MAC=3D00:50:04:55:d1:a4:00:02:4b:13:33:60:08:00 SRC=3D213.250.59.123 = DST=3D************ LEN=3D48 TOS=3D0x00 PREC=3D0x00 TTL=3D125 ID=3D19471 = DF PROTO=3DTCP SPT=3D4682 DPT=3D10 WINDOW=3D16384 RES=3D0x00 SYN = URGP=3D0=20 notice that the destination port is 10.it shows that for all ports i = think? this was logged when i tried to use the web server. so it should have recognized port 80 and not logged anything. I've seen other ppl having the same problem (searched google) but no one = knows what the problem might be. any ideas? ------=_NextPart_000_000F_01C289E7.E273DD50 Content-Type: text/html; charset="iso-8859-2" Content-Transfer-Encoding: quoted-printable

ok i'm having problems with the new = iptables and=20 1.4.19 kernel.

here is the log error:

Nov 11 04:55:29 BAKER kernel: ASSERT=20 ip_conntrack_core.c:1063 &ip_conntrack_lock not readlocked
Nov 11 = 04:55:29 BAKER kernel: ASSERT: ip_nat_core.c:839 &ip_conntrack_lock = not=20 readlocked

and then this is what happens later at = some=20 point:

Nov 11 20:57:58 BAKER kernel: IPTABLES = Dead Input:=20 IN=3Deth0 OUT=3D MAC=3D00:50:04:55:d1:a4:00:02:4b:13:33:60:08:00 = SRC=3D213.250.59.123=20 DST=3D************ LEN=3D48 TOS=3D0x00 PREC=3D0x00 TTL=3D125 ID=3D19471 = DF PROTO=3DTCP=20 SPT=3D4682 DPT=3D10 WINDOW=3D16384 RES=3D0x00 SYN URGP=3D0

notice that the destination port is = 10.it shows=20 that for all ports i think?

this was logged when i tried to use the = web=20 server.

so it should have recognized port 80 = and not logged=20 anything.

I've seen other ppl having the same = problem=20 (searched google) but no one knows what the problem might = be.

any ideas?

------=_NextPart_000_000F_01C289E7.E273DD50--