retitle 615121 iptables --localtz option of -m time not working with hardware clock in UTC thanks
-=| Jan Engelhardt, Thu, Mar 31, 2011 at 03:08:40AM +0200 |=-
>
> >Not sure if it matters, but the hardware clock is using UTC (i.e.
> >/etc/default/rcS contains "UTC=yes").
>
> When the xt_time kernel module is loaded, it prints the current timezone
> the kernel is operating with - and this is what xt_time will be using
> when doing localtz comparisons.
Thanks for the reply.
Indeed, there is this message in dmesg:
xt_time: kernel timezone is -0000
I have set the hardware clock to use the local timezone and it changed
to
xt_time: kernel timezone is +0300
It seems to fix the problem, but I wonder what would happen at the
next DST change. I guess it would require to shut down the firewall,
reload xt_time and restart the firewall so that it picks up the
correct timezone (If the kernel changes its at all. I have never used
UTC=no before). Still a suboptimal solution?
signature.asc
Description: Digital signature
