Bug 76356

Summary: unclean module matches udp packets without chksum as being invalid
Product: [Retired] Red Hat Linux Reporter: Need Real Name <andrei>
Component: iptablesAssignee: Thomas Woerner <twoerner>
Status: CLOSED NOTABUG QA Contact: Ben Levenson <benl>
Severity: medium Docs Contact:
Priority: medium    
Version: 8.0   
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2004-08-16 16:11:08 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Need Real Name 2002-10-20 19:45:23 UTC 
From Bugzilla Helper:
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 
1.0.3705)

Description of problem:
the iptables that comes with all versions of RH (including 8.0) has a problem 
with the unclean module : unclean matches all udp packets that don't have the 
chksum field as being invalid (and from rfc... udp packets do NOT need to have 
the chksum)

Version-Release number of selected component (if applicable):


How reproducible:
Always

Steps to Reproduce:
1.set the iptables to log and drop all unclean packets
2.try to connect to wwws.sun.com (you can try to browse www.sun.com->downloads)
3.
	

Actual Results:  connection will timeout and in the logs you will see several 
lines that states that iptables droped several upd packets with chksum zero 

Expected Results:  to be able to connect to wwws.sun.com

Additional info:

there are several fixes for this bug, including that the team that created 
iptables released a patch
Comment 1 Thomas Woerner 2004-08-16 16:11:08 UTC 
Please verify this with a newer version of Red Hat Enterprise Linux or
Fedora Core and reopen it against the new version if it still occurs.

Closing as "not a bug" for now.