[Bug 758] New: Retry iptables command on transient failure

bugzilla-daemon at bugzilla.netfilter.org bugzilla-daemon at bugzilla.netfilter.org
Wed Oct 19 12:22:48 CEST 2011


           Summary: Retry iptables command on transient failure
           Product: iptables
           Version: unspecified
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: iptables
        AssignedTo: netfilter-buglog at lists.netfilter.org
        ReportedBy: nils.rennebarth at funkwerk-ec.com
   Estimated Hours: 0.0

On our system, the command

# iptables -t mangle -D <some chain> <some rule>
# iptables -t mangle -F <some chain>

sometimes fails with exit code 4. Retrying the same command again works.
This happens often enough that is is annoying.

Couldn't iptables itself try a number of times and only exit if the
condition persists instead of giving up immediately?

The message when that happens suggests that it comes from the
following fragment in iptables-standalone.c:

                if (errno == EAGAIN) {
so I assume, that some system call returned EAGAIN. This may indicate a
real error condition (deadlock situation), which is why I wouldn't
retry indefinitely, but failing on a single try appears to be a
common case.

Configure bugmail: http://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.
You are watching all bug changes.

More information about the netfilter-buglog mailing list