Bug 153063

Summary: /etc/sysconfig/network-scripts/ifup refers to RH-Lokkit-0-50-INPUT iptables chain
Product: [Fedora] Fedora Reporter: Dennis Wagelaar <dwagelaar>
Component: initscriptsAssignee: Bill Nottingham <notting>
Status: CLOSED NOTABUG QA Contact: Brock Organ <borgan>
Severity: low Docs Contact:
Priority: medium    
Version: 3CC: rvokal
Target Milestone: ---   
Target Release: ---   
Hardware: i386   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2005-04-01 19:24:35 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Description Dennis Wagelaar 2005-04-01 08:05:54 UTC
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.6) Gecko/20050323 Firefox/1.0.2 Fedora/1.0.2-1.3.1

Description of problem:
There are some lines in the ifup script that try to punch a hole in the firewall for DNS clients if forwarding is used (iptables -D RH-Lokkit-0-50-INPUT -m udp -s 0/0 --sport 53 -d 0/0 --dport 1025:65535 -p udp -j ACCEPT). This chain is no longer used in FC3, so the commands don't accomplish anything.

I sometimes let my laptop do forwarding for my bluetooth PDA, but I already opened the firewall manually for all trusted addresses, so I am not affected.

Version-Release number of selected component (if applicable):
initscripts-7.93.7-1

How reproducible:
Didn't try


Additional info:

Comment 1 Bill Nottingham 2005-04-01 19:24:35 UTC
It's there for configs still using the old firewall. At some point it can be
removed, but leaving it there doesn't hurt.