From: "J.A. Magallon" <jamagallon@able.es>
To: Linux-Kernel Lista <linux-kernel@vger.kernel.org>
Cc: Patrick McHardy <kaber@trash.net>, Andrew Morton <akpm@osdl.org>,
netdev@vger.kernel.org
Subject: Re: 2.6.13-mm2
Date: Sun, 11 Sep 2005 00:58:08 +0000 [thread overview]
Message-ID: <1126400288l.6300l.3l@werewolf.able.es> (raw)
In-Reply-To: <1126399776l.6300l.2l@werewolf.able.es> (from jamagallon@able.es on Sun Sep 11 02:49:36 2005)
On 09.11, J.A. Magallon wrote:
>
> On 09.11, Patrick McHardy wrote:
> > Andrew Morton wrote:
> > > "J.A. Magallon" <jamagallon@able.es> wrote:
> > >
> > >>I can not ifup an interface while iptables is using it.
> > >>Is this expected behaviour ?
> > >
> > > Maybe it's expected, but breaking existing userspace is a serious issue.
> >
> > No, its not expected.
> >
> > >>There is a possible bug (IMHO) in Mandrake initscripts, that start iptables
> > >>before network interfaces, but this had always worked.
> > >>
> > >>Any ideas ?
> >
> > What's happening when you try to set the interface up? Please
> > provide output of ifup and strace of the failing command. Thanks.
>
> werewolf:~# ifdown eth0
> werewolf:~# service iptables start
> Applying iptables firewall rules:
> [ OK ]
> werewolf:~# iptables -v -t nat -L
> Chain PREROUTING (policy ACCEPT 2 packets, 156 bytes)
> pkts bytes target prot opt in out source destination
>
> Chain POSTROUTING (policy ACCEPT 5 packets, 300 bytes)
> pkts bytes target prot opt in out source destination
> 0 0 MASQUERADE all -- any eth0 anywhere anywhere
>
> Chain OUTPUT (policy ACCEPT 5 packets, 300 bytes)
> pkts bytes target prot opt in out source destination
> werewolf:~# iptables -v -t filter -L
> Chain INPUT (policy ACCEPT 257 packets, 51631 bytes)
> pkts bytes target prot opt in out source destination
>
> Chain FORWARD (policy DROP 0 packets, 0 bytes)
> pkts bytes target prot opt in out source destination
> 0 0 ACCEPT all -- eth0 eth1 anywhere anywhere state RELATED,ESTABLISHED
> 0 0 ACCEPT all -- eth1 eth0 anywhere anywhere
>
> Chain OUTPUT (policy ACCEPT 251 packets, 51163 bytes)
> pkts bytes target prot opt in out source destination
>
> werewolf:~# ifup eth0
>
> Determining IP information for eth0...Operation failed.
> failed.
>
> I traced the problem to pump, and I did a diff between strace of pump
> when it works and when it doesnt (witout and with iptables started):
>
> socket(PF_FILE, SOCK_STREAM, 0) = 3
> connect(3, {sa_family=AF_FILE, path="/var/run/pump.sock"}, 20) = 0
> write(3, "\0\0\0\0eth0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\300"..., 4280) = 4280
> -read(3, "\1\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0"..., 4280) = 4280
> -exit_group(0) = ?
> -Process 7931 detached
> +read(3, "\1\0\0\0\1\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0"..., 4280) = 4280
> +socket(PF_FILE, SOCK_STREAM, 0) = 4
> +connect(4, {sa_family=AF_FILE, path="/var/run/pump.sock"}, 20) = 0
> +write(4, "\0\0\0\0eth0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\300"..., 4280) = 4280
> +read(4, "\1\0\0\0\1\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0\0"..., 4280) = 4280
> +write(2, "Operation failed.\n", 18Operation failed.
> +) = 18
> +exit_group(1) = ?
> +Process 7822 detached
>
> pump seems to write something in the socket, try to read it again and gets
> different results.
>
> Note, my iptables are modular and I did not unload the modules, just stopped
> them with 'service iptables stop'. Digging further, if I just do
> iptables -t nat -F, pump works again.
>
> Hope this helps.
>
And I also get this on syslog:
Sep 11 02:56:58 werewolf kernel: MASQUERADE: eth0 ate my IP address
Sep 11 02:56:58 werewolf kernel: MASQUERADE: eth0 ate my IP address
--
J.A. Magallon <jamagallon()able!es> \ Software is like sex:
werewolf!able!es \ It's better when it's free
Mandriva Linux release 2006.0 (Cooker) for i586
Linux 2.6.13-jam3 (gcc 4.0.1 (4.0.1-5mdk for Mandriva Linux release 2006.0))
next prev parent reply other threads:[~2005-09-11 0:58 UTC|newest]
Thread overview: 84+ messages / expand[flat|nested] mbox.gz Atom feed top
2005-09-08 12:30 2.6.13-mm2 Andrew Morton
2005-09-08 13:12 ` 2.6.13-mm2 Benoit Boissinot
2005-09-08 13:48 ` 2.6.13-mm2 Christoph Hellwig
2005-09-08 14:30 ` 2.6.13-mm2 Martin J. Bligh
2005-09-09 0:39 ` 2.6.13-mm2 Andi Kleen
2005-09-09 10:41 ` 2.6.13-mm2 Andrew Morton
2005-09-09 10:46 ` 2.6.13-mm2 Andi Kleen
2005-09-08 15:11 ` 2.6.13-mm2 high memory support borken? Michal Piotrowski
2005-09-09 9:29 ` Andrew Morton
2005-09-08 17:20 ` 2.6.13-mm2 Michael Thonke
2005-09-08 19:39 ` 2.6.13-mm2 Andrew Morton
2005-09-10 7:02 ` 2.6.13-mm2 Michael Thonke
2005-09-09 1:47 ` 2.6.13-mm2 Grant Coady
2005-09-09 9:43 ` 2.6.13-mm2 Andrew Morton
2005-09-09 13:45 ` 2.6.13-mm2 Grant Coady
2005-09-10 6:33 ` 2.6.13-mm2 Marko Kohtala
2005-09-09 2:52 ` 2.6.13-mm2 - drivers/char/speakup/speakup doesn't compile (+warnings from other things) Damir Perisa
2005-09-09 12:18 ` Alan Cox
2005-09-09 20:57 ` 2.6.13-mm2 (general protection fault) Dominik Karall
2005-09-10 11:45 ` 2.6.13-mm2 Manuel Lauss
2005-09-10 12:42 ` 2.6.13-mm2 Antonino A. Daplas
2005-09-10 13:46 ` 2.6.13-mm2 Manuel Lauss
2005-09-10 20:21 ` 2.6.13-mm2 Antonino A. Daplas
2005-09-10 21:26 ` 2.6.13-mm2 Antonino A. Daplas
2005-09-10 18:43 ` 2.6.13-mm2 Dominik Karall
2005-09-10 22:12 ` 2.6.13-mm2 Andrew Morton
2005-09-10 23:46 ` 2.6.13-mm2 J.A. Magallon
2005-09-10 23:56 ` 2.6.13-mm2 Andrew Morton
2005-09-11 0:07 ` 2.6.13-mm2 Patrick McHardy
2005-09-11 0:49 ` 2.6.13-mm2 J.A. Magallon
2005-09-11 0:58 ` J.A. Magallon [this message]
2005-09-11 1:03 ` 2.6.13-mm2 Patrick McHardy
2005-09-11 1:22 ` 2.6.13-mm2 J.A. Magallon
2005-09-11 1:25 ` 2.6.13-mm2 Patrick McHardy
2005-09-11 17:03 ` 2.6.13-mm2 Rafael J. Wysocki
2005-09-11 19:36 ` 2.6.13-mm2 Andrew Morton
2005-09-11 20:03 ` 2.6.13-mm2 Hugh Dickins
2005-09-12 19:19 ` 2.6.13-mm2 Rafael J. Wysocki
2005-09-11 20:08 ` 2.6.13-mm2 Daniel Ritz
2005-09-12 10:04 ` 2.6.13-mm2 Rafael J. Wysocki
2005-09-12 10:06 ` 2.6.13-mm2 Rafael J. Wysocki
2005-09-12 10:09 ` 2.6.13-mm2 Rafael J. Wysocki
2005-09-18 21:49 ` 2.6.13-mm2 Daniel Ritz
2005-09-19 3:07 ` 2.6.13-mm2 Hugh Dickins
2005-09-19 15:56 ` 2.6.13-mm2 Daniel Ritz
2005-09-23 16:52 ` 2.6.13-mm2 Rafael J. Wysocki
2005-09-28 20:05 ` 2.6.13-mm2 Daniel Ritz
2005-09-28 20:23 ` [linux-usb-devel] 2.6.13-mm2 David Brownell
2005-09-28 20:37 ` Rafael J. Wysocki
2005-09-28 20:56 ` David Brownell
2005-09-28 21:34 ` Rafael J. Wysocki
2005-09-28 22:04 ` David Brownell
2005-09-28 22:32 ` Daniel Ritz
2005-09-29 0:09 ` David Brownell
2005-09-29 15:36 ` Linus Torvalds
2005-09-29 16:31 ` David Brownell
2005-09-29 19:39 ` Daniel Ritz
2005-09-30 16:33 ` Linus Torvalds
2005-09-30 17:48 ` David Brownell
2005-09-29 2:54 ` Alan Stern
2005-09-28 20:45 ` Daniel Ritz
2005-09-28 21:07 ` David Brownell
2005-09-28 21:47 ` Rafael J. Wysocki
2005-09-28 22:07 ` Daniel Ritz
2005-09-28 21:10 ` Alan Stern
2005-09-29 15:22 ` 2.6.13-mm2 Linus Torvalds
2005-09-12 3:07 ` 2.6.13-mm2 Martin J. Bligh
2005-09-12 5:01 ` 2.6.13-mm2 Andi Kleen
2005-09-12 6:09 ` 2.6.13-mm2 Martin J. Bligh
2005-09-12 7:16 ` 2.6.13-mm2 Andi Kleen
2005-09-12 18:06 ` 2.6.13-mm2 Martin J. Bligh
2005-09-12 18:19 ` 2.6.13-mm2 Dave Hansen
2005-09-12 18:51 ` 2.6.13-mm2 Andi Kleen
2005-09-12 22:46 ` 2.6.13-mm2 Martin J. Bligh
2005-09-13 0:08 ` 2.6.13-mm2 Andrew Morton
2005-09-13 4:00 ` 2.6.13-mm2 Martin J. Bligh
2005-09-12 3:10 ` 2.6.13-mm2 Martin J. Bligh
[not found] <4KtRD-7Nt-13@gated-at.bofh.it>
2005-09-08 23:23 ` 2.6.13-mm2 Ronny V. Vindenes
2005-09-08 23:34 ` 2.6.13-mm2 Andrew Morton
2005-09-09 0:26 ` 2.6.13-mm2 Parag Warudkar
2005-09-09 0:55 ` 2.6.13-mm2 Roland McGrath
-- strict thread matches above, loose matches on Subject: below --
2005-09-17 0:36 2.6.13-mm2 Chuck Ebbert
2005-09-17 4:17 ` 2.6.13-mm2 Parag Warudkar
2005-09-17 4:30 ` 2.6.13-mm2 Parag Warudkar
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=1126400288l.6300l.3l@werewolf.able.es \
--to=jamagallon@able.es \
--cc=akpm@osdl.org \
--cc=kaber@trash.net \
--cc=linux-kernel@vger.kernel.org \
--cc=netdev@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox