Public bug reported: iptables was working fine until I did an upgrade to a new kernel version. Now it is impossible to load my firewall rules using iptables- restore. The iptables-restore program croaks when trying to load the rules.
While the error is reported on the line associated with the "COMMIT" statement, it appears that it is really failing when the "-j LOG" option is used. If I eliminate the "-j LOG" option on statements, it seems to work normally (like it did before). When I run lsmod, there is no "xt_LOG" or "ipt_LOG" module present. I cannot find the "xt_LOG.ko" or "ipt_LOG.ko" file anyplace, so I cannot load them manually. Not sure if this is a kernel bug or an iptables bug, but since it makes it impossible to load my firewall rules and leaves my system wide open, it's definitely a security issue. Description: Ubuntu 12.04.4 LTS Release: 12.04 iptables: Installed: 1.4.12-1ubuntu5 Candidate: 1.4.12-1ubuntu5 Version table: *** 1.4.12-1ubuntu5 0 500 http://us.archive.ubuntu.com/ubuntu/ precise-updates/main amd64 Packages 100 /var/lib/dpkg/status 1.4.12-1ubuntu4 0 500 http://us.archive.ubuntu.com/ubuntu/ precise/main amd64 Packages Kernel: 3.4.4-guest ** Affects: iptables (Ubuntu) Importance: Undecided Status: New ** Tags: iptables ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1339932 Title: iptables -j LOG fails on 12.04 kernel 3.4.4-guest To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/iptables/+bug/1339932/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs