[Firewall] Arnos Firewall nf_conntrack issue

Lonnie Abelbeck lists at lonnie.abelbeck.com
Thu May 11 15:21:35 CEST 2017


Hi Stuart,

Thanks for reporting.

I opened an "issue" on Github to track a solution.

Connection Tracking Helpers
https://github.com/arno-iptables-firewall/aif/issues/35

It would seem you could ignore the kernel message, with AIF the only protocol by default effected would be possibly FTP.

Lonnie


On May 11, 2017, at 5:52 AM, Stuart Foster <smf.linux at ntlworld.com> wrote:

> 
> Hi,
> 
> I have recently noticed this in my dmesg output, is it important and if so what should I do about it ?
> 
> [    9.276657] nf_conntrack version 0.5.0 (65536 buckets, 262144 max)
> [ 1224.771797] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based  firewall rule not found. Use the iptables CT target to attach helpers instead.
> 
> I am using:
> 
> MY_VERSION="2.0.0b"
> 
> on linux kernel version 4.9.20 with libc 2.25.
> 
> Thanks
> _______________________________________________
> Firewall mailing list
> Firewall at rocky.eld.leidenuniv.nl
> http://rocky.eld.leidenuniv.nl/mailman/listinfo/firewall
> Arno's (Linux IPTABLES Firewall) Homepage:
> http://rocky.eld.leidenuniv.nl



More information about the Firewall mailing list