Bugzilla will be upgraded to version 5.0. The upgrade date is tentatively scheduled for 2 December 2018, pending final testing and feedback.
First Last Prev Next    This bug is not in your last search results.
Bug 522000 - [RFE ] Connlimit kernel module support [rhel-4.9]
[RFE ] Connlimit kernel module support [rhel-4.9]
Status: CLOSED ERRATA
Product: Red Hat Enterprise Linux 4
Classification: Red Hat
Component: kernel (Show other bugs)
4.9
All Linux
urgent Severity high
: rc
: ---
Assigned To: Jiri Pirko
Evan McNabb
: FutureFeature, Triaged, ZStream
Depends On: 483588 525132
Blocks: 563222 563223
  Show dependency treegraph
 
Reported: 2009-09-08 23:07 EDT by Eugene Teo (Security Response)
Modified: 2015-05-04 21:17 EDT (History)
10 users (show)

See Also:
Fixed In Version:
Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: 483588
Environment:
Last Closed: 2011-02-16 10:43:45 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)


External Trackers
Tracker ID Priority Status Summary Last Updated
Red Hat Product Errata RHSA-2011:0263 normal SHIPPED_LIVE Important: Red Hat Enterprise Linux 4.9 kernel security and bug fix update 2011-02-16 10:14:55 EST

  None (edit)
Description Eugene Teo (Security Response) 2009-09-08 23:07:30 EDT 
+++ This bug was initially created as a clone of Bug #483588 +++

Support for connlimit in the kernel was added in Red Hat Enterprise Linux 5 via the advisory RHSA-2009:1243. This bug was filed to ensure that we also provide support for connlimit on Red Hat Enterprise Linux 4.

# cat /etc/redhat-release 
Red Hat Enterprise Linux AS release 4 (Nahant Update 8)
# uname -rm
2.6.9-89.7.EL i686
# iptables -A INPUT -p tcp --syn --dport 80 -m connlimit --connlimit-above 15 -j REJECT
iptables: No chain/target/match by that name

http://linux.chinaunix.net/bbs/viewthread.php?tid=793083###

AFAIK, the iptables package has support for connlimit, but the kernel needs to provide the required module in order for this feature to work.

This is related to bug 483588.

We will need this in 4.8.z as well.
Comment 2 Jiri Pirko 2009-09-23 10:10:50 EDT 
depends on iptables package simple change.
Comment 11 Vivek Goyal 2010-04-05 15:31:01 EDT 
Committed in 89.22.EL . RPMS are available at http://people.redhat.com/vgoyal/rhel4/
Comment 17 errata-xmlrpc 2011-02-16 10:43:45 EST 
An advisory has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on therefore solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.

http://rhn.redhat.com/errata/RHSA-2011-0263.html
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.