[Bug 404] Packets stuck in netfilter_queue after heavy loading

bugzilla-daemon at bugzilla.netfilter.org bugzilla-daemon at bugzilla.netfilter.org
Fri Feb 10 14:48:45 CET 2006


https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=404





------- Additional Comments From laforge at netfilter.org  2006-02-10 14:48 MET -------
Ok, now I have some news:

I can reproduce it when running iperf over the loopback interface and
doing -j QUEUE in INPUT.

With my debug patches, I get one line

len(4096) < nlh->nlmsg_len(16480)

for every 'stuck' packet. This clearly indicates that the kernel sends
messages that are larger than the 4096byte static buffer that
nfqnl_test.c uses.  I've increased this to 65535 and no longer get those
problems.

Hoewver, the buffer actually needs to be even larger, since the maximum
native packet size is 64k, plus the overhead of nfnetlink attributes,
etc.

What buffer size do you use in your app?


-- 
Configure bugmail: https://bugzilla.netfilter.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You reported the bug, or are watching the reporter.



More information about the netfilter-buglog mailing list