[Bug 822] New: iptables shows negative or other bad packet/byte counts

bugzilla-daemon at netfilter.org bugzilla-daemon at netfilter.org
Wed May 22 02:53:05 CEST 2013


           Summary: iptables shows negative or other bad packet/byte
           Product: iptables
           Version: unspecified
          Platform: All
        OS/Version: Fedora
            Status: NEW
          Severity: critical
          Priority: P5
         Component: iptables
        AssignedTo: netfilter-buglog at lists.netfilter.org
        ReportedBy: argsvygre at zacglen.net
   Estimated Hours: 0.0

Under heavy system load iptables 1.4.5 can show negative or otherwise bad
packet and byte counts when using "iptables -L -v".

Here is one such example:

>Chain acct (168 references)
>    pkts      bytes target     prot opt in     out     source         destination
>18446744073709551579 18446744073709538670 ACCEPT     all  --  eth0+  *  
>18446744073709551593     6156 ACCEPT     all  --  *      eth0+  

The value 18446744073709551579 is 0xFFFFFFFFFFFFFFDB

On other occasions I have observed values such as 18446744073763221504
(0x1000000000332F000) with just the high bit (64) set.

This only appear to occur under heavy system load for some reason.

Configure bugmail: https://bugzilla.netfilter.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching all bug changes.

More information about the netfilter-buglog mailing list