Le jeudi 11 novembre 2010 Ã 18:25 +0100, Jan Kasprzak a Ãcrit : > Patrick McHardy wrote: > : Am 11.11.2010 16:35, schrieb Eric Dumazet: > : > Please provide > : > > : > cat /proc/meminfo > > # cat /proc/meminfo > MemTotal: 2060716 kB > MemFree: 123516 kB > Buffers: 409288 kB > Cached: 943404 kB > SwapCached: 240 kB > Active: 1020036 kB > Inactive: 541816 kB > Active(anon): 121664 kB > Inactive(anon): 92764 kB > Active(file): 898372 kB > Inactive(file): 449052 kB > Unevictable: 18432 kB > Mlocked: 18432 kB > SwapTotal: 1959804 kB > SwapFree: 1957884 kB > Dirty: 96 kB > Writeback: 0 kB > AnonPages: 227276 kB > Mapped: 76724 kB > Shmem: 92 kB > Slab: 268912 kB > SReclaimable: 116940 kB > SUnreclaim: 151972 kB > KernelStack: 1984 kB > PageTables: 10312 kB > NFS_Unstable: 0 kB > Bounce: 0 kB > WritebackTmp: 0 kB > CommitLimit: 2990160 kB > Committed_AS: 398204 kB > VmallocTotal: 34359738367 kB > VmallocUsed: 33696 kB > VmallocChunk: 34358635704 kB > DirectMap4k: 4032 kB > DirectMap2M: 2093056 kB > > : > Also please apply this patch : > : > > : > http://git2.kernel.org/?p=linux/kernel/git/davem/net-2.6.git;a=commitdiff;h=6b1686a71e3158d3c5f125260effce171cc7852b > > I will try it tomorrow. > Sorry, you dont need it, since you run a 64bit kernel. > : This problem is usually caused by manipulating the ruleset from multiple > : iptables instances concurrently. > > There probably can be some other iptables commands running > occasionally (automatic blacklisting of some IP addresses, enabling > traffic to authenticated laptops, etc.), but not in the chains I am > trying to modify with my firewall initscript. Can this also be a problem? > Yes it is a problem. iptables manipulates the whole table, not a subtree. -- To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
