View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0017533 | CentOS-8 | kernel | public | 2020-06-23 16:52 | 2020-06-23 16:52 |
| Reporter | bern | Assigned To | |||
| Priority | normal | Severity | major | Reproducibility | always |
| Status | new | Resolution | open | ||
| Product Version | 8.2.2004 | ||||
| Summary | 0017533: Support for iptables -m time Missing in Kernel | ||||
| Description | We administer firewall settings with ferm, so at least those have firewalld deactivated so as to use plain iptables instead. On CentOS 8, the "time" module is still mentioned in the iptables-extended manpage and apparently supported by the libs, but there's no matching kernel module and attempts to use it yield an error message: # ls -l /usr/lib64/xtables/*_{comment,time}.* -rwxr-xr-x. 1 root root 12288 Apr 24 15:51 /usr/lib64/xtables/libxt_comment.so -rwxr-xr-x. 1 root root 16496 Apr 24 15:51 /usr/lib64/xtables/libxt_time.so # ls -l /lib/modules/*/kernel/net/netfilter/*_{comment,time}.* ls: cannot access '/lib/modules/*/kernel/net/netfilter/*_time.*': No such file or directory -rw-r--r--. 1 root root 1784 Dec 4 2019 /lib/modules/4.18.0-147.el8.x86_64/kernel/net/netfilter/xt_comment.ko.xz -rw-r--r--. 1 root root 1788 Jun 10 13:23 /lib/modules/4.18.0-193.6.3.el8_2.x86_64/kernel/net/netfilter/xt_comment.ko.xz # iptables -A OUTPUT -d 0.0.0.0 -m time --datestop 2020-07-01 -j ACCEPT iptables v1.8.4 (nf_tables): Couldn't load match `time':No such file or directory Try `iptables -h' or 'iptables --help' for more information. # iptables -A OUTPUT -d 0.0.0.0 -m comment --comment "Testing" -j ACCEPT # iptables -n -v -L OUTPUT Chain OUTPUT (policy ACCEPT 832 packets, 156K bytes) pkts bytes target prot opt in out source destination 0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0 /* Testing */ | ||||
| Steps To Reproduce | 1. Install and boot CentOS 8 2. See command and error message above (Expected: Either provide required kernel module, or remove mention of -m time from manpages) | ||||
| Tags | No tags attached. | ||||
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2020-06-23 16:52 | bern | New Issue |
