[Firewall] Restart for firewall rules only

Arno van Amersfoort arnova at rocky.eld.leidenuniv.nl
Thu Nov 4 18:44:26 CET 2010


Weird. This means that one of the following is the probably cause:
1) Some weird sysctl setting, set during boot time;
2) Some weird kernel setting, set during compile time;
3) The kernel contains some kind of patch causing this.

I'm afraid there's isn't much we can do about this in AIF itself.

a.

Shalom, Hai wrote:
> Hello Arno,
> 
> Indeed these messages are coming from the kernel...
> 
> <4>NAT Table update all sessions flushed
> <4>NAT Table update all sessions flushed
> <4>NAT Table update all sessions flushed 
> 
> 
> Regards,
> Hai Shalom.
>  
> 
> -----Original Message-----
> From: firewall-bounces at rocky.eld.leidenuniv.nl [mailto:firewall-bounces at rocky.eld.leidenuniv.nl] On Behalf Of Arno van Amersfoort
> Sent: Tuesday, November 02, 2010 9:26 PM
> To: Arno's IPTABLES firewall script
> Subject: Re: [Firewall] Restart for firewall rules only
> 
> Mind checking your kernel log for messages like the one appearing on your console?
> 
> a.
> 
> Shalom, Hai wrote:
>> What do you mean by "call just restart" ? 
>>
>>
>> Regards,
>> Hai Shalom.
>>  
>>
>> -----Original Message-----
>> From: firewall-bounces at rocky.eld.leidenuniv.nl 
>> [mailto:firewall-bounces at rocky.eld.leidenuniv.nl] On Behalf Of WC -Sx- 
>> Jones
>> Sent: Tuesday, November 02, 2010 5:43 PM
>> To: Arno's IPTABLES firewall script
>> Subject: Re: [Firewall] Restart for firewall rules only
>>
>> On Mon, Nov 1, 2010 at 10:20 AM, Shalom, Hai <hai at ti.com> wrote:
>>> Here's the complete output:
>>>
>>> # arno-iptables-firewall restart
>>> Arno's Iptables Firewall Script v1.9.2m
>>
>> Your version of AIF may literally be calling stop/start and not restart --- can you call just restart and see if that fixes it?
>> _______________________________________________
>> Firewall mailing list
>> Firewall at rocky.eld.leidenuniv.nl
>> http://rocky.eld.leidenuniv.nl/mailman/listinfo/firewall
>> Arno's (Linux IPTABLES Firewall) Homepage:
>> http://rocky.eld.leidenuniv.nl
>> _______________________________________________
>> Firewall mailing list
>> Firewall at rocky.eld.leidenuniv.nl
>> http://rocky.eld.leidenuniv.nl/mailman/listinfo/firewall
>> Arno's (Linux IPTABLES Firewall) Homepage:
>> http://rocky.eld.leidenuniv.nl
>>
> 
> --
> Arno van Amersfoort
> E-mail    : arnova at rocky.eld.leidenuniv.nl
> Donations are welcome through Paypal!
> ---------------------------------------------------------------------------
> Arno's (Linux IPTABLES Firewall) Homepage:
> http://rocky.eld.leidenuniv.nl
> _______________________________________________
> Firewall mailing list
> Firewall at rocky.eld.leidenuniv.nl
> http://rocky.eld.leidenuniv.nl/mailman/listinfo/firewall
> Arno's (Linux IPTABLES Firewall) Homepage:
> http://rocky.eld.leidenuniv.nl
> _______________________________________________
> Firewall mailing list
> Firewall at rocky.eld.leidenuniv.nl
> http://rocky.eld.leidenuniv.nl/mailman/listinfo/firewall
> Arno's (Linux IPTABLES Firewall) Homepage:
> http://rocky.eld.leidenuniv.nl
> 

-- 
Arno van Amersfoort
E-mail    : arnova at rocky.eld.leidenuniv.nl
Donations are welcome through Paypal!
---------------------------------------------------------------------------
Arno's (Linux IPTABLES Firewall) Homepage:
http://rocky.eld.leidenuniv.nl


More information about the Firewall mailing list