#19031: iptables LOG target broken on 3.18 kernel
------------------------------------+----------------------------------
Reporter: Stijn Tintel <stijn@…> | Owner: developers
Type: defect | Status: new
Priority: highest | Milestone: Chaos Calmer (trunk)
Component: base system | Version: Trunk
Keywords: |
------------------------------------+----------------------------------
It is not possible to use the iptables LOG target with the 3.18 kernel:
{{{
root@ar0:~# iptables -I INPUT -i eth1 -j LOG
iptables: No chain/target/match by that name.
}}}
The target does exist in the kernel:
{{{
root@ar0:~# lsmod | grep -i log
xt_LOG
root@ar0:~# grep LOG /proc/net/ip_tables_targets
LOG
}}}
I am seeing this on different targets:
- octeon CC r43800, kernel 3.18.1
- ar71xx CC r44486, kernel 3.18.7
This has a nasty side effect when you have a firewall zone with logging
enabled. In this case, fw3 fails to install any firewall rules in the
filter table, and you end up with a very broken router. I have set the
priority to highest for this reason.
--
Ticket URL: <https://dev.openwrt.org/ticket/19031>
OpenWrt <http://openwrt.org>
Opensource Wireless Router Technology
_______________________________________________
openwrt-tickets mailing list
[email protected]
https://lists.openwrt.org/cgi-bin/mailman/listinfo/openwrt-tickets
