Bug 355561
Summary: | RFE: s-c-f: don't give configuration failed in lokkit if ipv6 is disabled | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | David Timms <dtimms> |
Component: | system-config-firewall | Assignee: | Thomas Woerner <twoerner> |
Status: | CLOSED RAWHIDE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | low | Docs Contact: | |
Priority: | low | ||
Version: | rawhide | Keywords: | Reopened |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2007-11-06 10:56:36 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
David Timms
2007-10-28 01:36:56 UTC
Copy / pasting the lokkit command in a root terminal returns without error. No error if --quiet is removed. Modified fw_gui.py to print the return status from lokkit: 256 This triggers the error message since >0 Added -v to the lokkit command: Failed to start ip6tables. # service ip6tables status ip6tables: Firewall is not running. # chkconfig --list ip6tables ip6tables 0:off 1:off 2:off 3:off 4:off 5:off 6:off In fact I run with ipv6 disabled using: /etc/modprobe.conf: install ipv6 /bin/true and I hence if I: service ip6tables start Applying ip6tables firewall rules: ip6tables-restore v1.3.8: ip6tables-restore: unable to initialize table 'filter' Error occurred at line: 3 Try `ip6tables-restore -h' or 'ip6tables-restore --help' for more information. [FAILED] The error is generated in /usr/sbin/lokkit [line 152 or so]: ip6tables.write(config) ip6t_status = ip6tables.restart() if config.verbose and ip6t_status != 0: print _("Failed to start %s.") % "ip6tables" In this case ip6t_status=1 So: it would be nice to detect whether ipv4 or ipv6 kernel module is actually loaded before erroring that the firewall config couldn't be applied at all. I guess it would be nice {for tech user} to see ip6table could not be loaded because ip6 has been disabled, but that might be too much information for average user ? oops: read the resolution items, and left the resolve bug item selected. doh. Fixed in rawhide and F-8 in packages: system-config-firewall-1.0.9-1 iptables-1.3.8-6 system-config-firewall-1.0.9-1.fc8 has been pushed to the Fedora 8 testing repository. If problems still persist, please make note of it in this bug report. If you want to test the update, you can install it with su -c 'yum --enablerepo=updates-testing update system-config-firewall' Fixed in rawhide and F-8 in packages system-config-firewall-1.0.9-1 and iptables-1.3.8-6. |