Bug 76356 - unclean module matches udp packets without chksum as being invalid
Summary: unclean module matches udp packets without chksum as being invalid
Keywords:
Status: CLOSED NOTABUG
Alias: None
Product: Red Hat Linux
Classification: Retired
Component: iptables
Version: 8.0
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Thomas Woerner
QA Contact: Ben Levenson
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2002-10-20 19:45 UTC by Need Real Name
Modified: 2007-04-18 16:47 UTC (History)
0 users

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2004-08-16 16:11:08 UTC
Embargoed:

Attachments (Terms of Use)

Description Need Real Name 2002-10-20 19:45:23 UTC 
From Bugzilla Helper:
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR 
1.0.3705)

Description of problem:
the iptables that comes with all versions of RH (including 8.0) has a problem 
with the unclean module : unclean matches all udp packets that don't have the 
chksum field as being invalid (and from rfc... udp packets do NOT need to have 
the chksum)

Version-Release number of selected component (if applicable):


How reproducible:
Always

Steps to Reproduce:
1.set the iptables to log and drop all unclean packets
2.try to connect to wwws.sun.com (you can try to browse www.sun.com->downloads)
3.
	

Actual Results:  connection will timeout and in the logs you will see several 
lines that states that iptables droped several upd packets with chksum zero 

Expected Results:  to be able to connect to wwws.sun.com

Additional info:

there are several fixes for this bug, including that the team that created 
iptables released a patch
Comment 1 Thomas Woerner 2004-08-16 16:11:08 UTC 
Please verify this with a newer version of Red Hat Enterprise Linux or
Fedora Core and reopen it against the new version if it still occurs.

Closing as "not a bug" for now.
Note You need to log in before you can comment on or make changes to this bug.