Bug 1479951 - firewalld shows WARNING messages INVALID_ICMPTYPE: No supported ICMP type., ign...time.
firewalld shows WARNING messages INVALID_ICMPTYPE: No supported ICMP type., i...
Status: ON_QA
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: firewalld (Show other bugs)
7.4
Unspecified Unspecified
high Severity medium
: rc
: ---
Assigned To: Phil Sutter
qe-baseos-daemons
:
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2017-08-09 15:43 EDT by Akhil John
Modified: 2017-10-16 14:24 EDT (History)
7 users (show)

See Also:
Fixed In Version: firewalld-0.4.4.4-11.el7
Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed:
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)


External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Knowledge Base (Solution) 3146311 None None None 2017-08-09 16:11 EDT

  None (edit)
Description Akhil John 2017-08-09 15:43:48 EDT
Description of problem:
FirewallD shows warning messages like INVALID_ICMPTYPE: No supported ICMP type., ign...time.

Version-Release number of selected component (if applicable):
firewalld-0.4.4.4-6.el7.noarch
RHEL 7.4

How reproducible:
Always

Steps to Reproduce:
1.Start the firewalld-0.4.4.4-6.el7.noarch and check the status which shows:

# systemctl status firewalld
● firewalld.service - firewalld - dynamic firewall daemon
   Loaded: loaded (/usr/lib/systemd/system/firewalld.service; disabled; vendor preset: enabled)
   Active: active (running) since Thu 2017-08-10 03:32:41 CST; 8min ago
     Docs: man:firewalld(1)
 Main PID: 1151 (firewalld)
   CGroup: /system.slice/firewalld.service
           └─1151 /usr/bin/python -Es /usr/sbin/firewalld --nofork --nopid

Aug 10 03:32:40 rhel7u4-1.gsslab.pek2.redhat.com systemd[1]: Starting firewalld - dynamic firewall daemon...
Aug 10 03:32:41 rhel7u4-1.gsslab.pek2.redhat.com systemd[1]: Started firewalld - dynamic firewall daemon.
Aug 10 03:32:41 rhel7u4-1.gsslab.pek2.redhat.com firewalld[1151]: WARNING: ICMP type 'beyond-scope' is not supported by the kernel for ipv6.
Aug 10 03:32:41 rhel7u4-1.gsslab.pek2.redhat.com firewalld[1151]: WARNING: beyond-scope: INVALID_ICMPTYPE: No supported ICMP type., ignoring for run-time.
Aug 10 03:32:41 rhel7u4-1.gsslab.pek2.redhat.com firewalld[1151]: WARNING: ICMP type 'failed-policy' is not supported by the kernel for ipv6.
Aug 10 03:32:41 rhel7u4-1.gsslab.pek2.redhat.com firewalld[1151]: WARNING: failed-policy: INVALID_ICMPTYPE: No supported ICMP type., ignoring for run-time.
Aug 10 03:32:41 rhel7u4-1.gsslab.pek2.redhat.com firewalld[1151]: WARNING: ICMP type 'reject-route' is not supported by the kernel for ipv6.
Aug 10 03:32:41 rhel7u4-1.gsslab.pek2.redhat.com firewalld[1151]: WARNING: reject-route: INVALID_ICMPTYPE: No supported ICMP type., ignoring for run-time.

2. The /var/log/firewalld file also shows has the same messages. These messages are generated on every restart of firewalld.service.
# cat /var/log/firewalld 
2017-08-10 03:32:41 WARNING: ICMP type 'beyond-scope' is not supported by the kernel for ipv6.
2017-08-10 03:32:41 WARNING: beyond-scope: INVALID_ICMPTYPE: No supported ICMP type., ignoring for run-time.
2017-08-10 03:32:41 WARNING: ICMP type 'failed-policy' is not supported by the kernel for ipv6.
2017-08-10 03:32:41 WARNING: failed-policy: INVALID_ICMPTYPE: No supported ICMP type., ignoring for run-time.
2017-08-10 03:32:41 WARNING: ICMP type 'reject-route' is not supported by the kernel for ipv6.
2017-08-10 03:32:41 WARNING: reject-route: INVALID_ICMPTYPE: No supported ICMP type., ignoring for run-time.



Expected results:
There shouldn't be any warning messages.!

Additional info:
firewalld is running with default configurations.
Comment 2 fgieseler 2017-08-21 14:31:37 EDT
Hi Team,

My components are:
- firewall-config-0.4.4.4-6.el7.noarch
- firewalld-0.4.4.4-6.el7.noarch
- python-firewall-0.4.4.4-6.el7.noarch
- firewalld-filesystem-0.4.4.4-6.el7.noarch

I appreciate a solution, or a new package if is available.

Thank you so much,

Kind regards

Note You need to log in before you can comment on or make changes to this bug.