[Bug 91] conntrack unload loops forever (reproducible)

bugzilla-daemon at bugzilla.netfilter.org bugzilla-daemon at bugzilla.netfilter.org
Thu Feb 24 06:53:38 CET 2005


https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=91





------- Additional Comments From netfilter at linuxace.com  2005-02-24 06:53 MET -------
Without trying to disrespect RedHat and/or FC, the policies of:

1) unloading then reloading netfilter modules on restart
2) unloading netfilter modules on shutdown

don't seem to be a bright idea (and I certainly don't do this on the production
firewalls I operate).  

So is this a bug in redhat or netfilter?  You seem undecided yourself, since
you've posted bugs in both places.

I would posit that the netfilter modules were not designed to be
unloaded/reloaded on an operational firewall, which would tend to agree with
Dave Miller's network driver module removal policy as noted here:

http://marc.theaimsgroup.com/?l=linux-kernel&m=105915495603446&w=2

Perhaps the netfilter modules should follow suit?

-- 
Configure bugmail: https://bugzilla.netfilter.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.



More information about the netfilter-buglog mailing list