Fw: Re: 2.6.14-rc1 Critical bug: machine complete freeze
kaber at trash.net
Sun Sep 18 18:58:55 CEST 2005
Patrizio Bassi wrote:
> Patrick McHardy ha scritto:
>>> My iptables script was about 1 year old, and worked perfectly.
>>> New kernel (dunno which...2.6.1x) introduced this problem.
>> Try adding some logging rules to see why it gets dropped (-m state
>> --state INVALID for example).
> the question is: why first time it's dropped and after reload not?
If the ping is already running before you load your NAT rules their
might already be state for the "connection" without NAT initialized.
> i've also supposed a time problem..waiting for bridge propagating and so
> after some mins i tried, and got same problem, so there must be some
> initialization problems.
> i suspect in bridge interface enabling/disabling and iptables in
> following bridge changes.
I don't know your setup, so I can't comment on this. But again,
some logging rules should at least tell whats happening to the
More information about the netfilter-devel