Package: conntrackd Version: 1:1.2.1-1 Severity: important Tags: upstream
It seems that version 1.2.1 of Conntrackd has a bug in a commit operation. In the next version tag (1.2.2) the issue is fixed. The exact upstream commit is: http://git.netfilter.org/cgi-bin/gitweb.cgi?p=conntrack-tools.git;a=commit;h=7eb63b5872f07903d952aa5cfd6ad0e7647a066a -- System Information: Debian Release: wheezy/sid APT prefers testing APT policy: (500, 'testing') Architecture: amd64 (x86_64) Kernel: Linux 3.2.0-3-amd64 (SMP w/16 CPU cores) Locale: LANG=es_ES.UTF-8, LC_CTYPE=es_ES.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Versions of packages conntrackd depends on: ii libc6 2.13-33 ii libnetfilter-conntrack3 1.0.1-1 ii libnfnetlink0 1.0.0-1 conntrackd recommends no packages. conntrackd suggests no packages. -- Configuration Files: /etc/conntrackd/conntrackd.conf changed: Sync { Mode ALARM { RefreshTime 15 CacheTimeout 180 } Multicast { IPv4_address 225.0.0.50 Group 3780 IPv4_interface 172.16.0.1 Interface eth8 SndSocketBuffer 1249280 RcvSocketBuffer 1249280 Checksum on } } General { # # Number of buckets in the caches: hash table # HashSize 8192 # # Maximum number of conntracks: # it must be >= $ cat /proc/sys/net/ipv4/netfilter/ip_conntrack_max # HashLimit 65535 # # Logfile: on (/var/log/conntrackd.log), off, or a filename # Default: off # LogFile on # # Syslog: on, off or a facility name (daemon (default) or local0..7) # Default: off # Syslog on # # Lockfile # LockFile /var/lock/conntrackd.lock # # Unix socket configuration # UNIX { Path /var/run/conntrackd.sock Backlog 20 } # # Netlink socket buffer size # SocketBufferSize 262142 # # Increase the socket buffer up to maximun if required # SocketBufferSizeMaxGrown 655355 # # Event filtering: This clause allows you to filter certain traffic, # There are currently three filter-sets: Protocol, Address and # State. The filter is attached to an action that can be: Accept or # Ignore. Thus, you can define the event filtering policy of the # filter-sets in positive or negative logic depending on your needs. # Filter { # # Accept only certain protocols: You may want to log the # state of flows depending on their layer 4 protocol. # Protocol Accept { TCP } # # Ignore traffic for a certain set of IP's. # Address Ignore { IPv4_address 127.0.0.1 # loopback IPv4_address 172.16.0.1 # cluster link IPv4_address 172.16.0.2 # cluster link # [...] } # # Uncomment this line below if you want to filter by flow state. # The existing TCP states are: SYN_SENT, SYN_RECV, ESTABLISHED, # FIN_WAIT, CLOSE_WAIT, LAST_ACK, TIME_WAIT, CLOSED, LISTEN. # # State Accept { # ESTABLISHED CLOSED TIME_WAIT CLOSE_WAIT for TCP # } } } -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
