netfilter buglog - Feb 2003 - [Bug 51] New: Supplying more than 8 ports to connection tracking triggers unusual system behavior

https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=51

           Summary: Supplying more than 8 ports to connection tracking
                    triggers unusual system behavior
           Product: netfilter/iptables
           Version: linux-2.4.x
          Platform: other
        OS/Version: other
            Status: NEW
          Severity: major
          Priority: P2
         Component: connection tracking
        AssignedTo: laforge@netfilter.org
        ReportedBy: bgsmith@bendcable.com
                CC: netfilter-buglog@lists.netfilter.org


I use gShield (http://muse.linuxmafia.org/gshield.html) to set up iptables
configuration on my RedHat 8.0 system. I recently decided to add several more
ports to the list of ports that irc connection tracking handles, approx. 13.

This caused a number of unusual symptoms in my system. The first indication was
the mouse stopped working. The second was when I rebooted the system, linux
would hang during boot as it was loading services such as sshd, sendmail, lpd,
etc. The system would just stop processing, although it would respond to
cntl-alt-del. I could always boot to single-user.

I spent about a week chasing this bug thinking it was a hardware problem (new
mouse, new motherboard, new cpu....).

Fortuitously, I noticed some error messages today about too many ports for
connection tracking, so I reduced the number to 8. And the problems went away.

Hope this helps.



------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.