[leglug-users] [llug-users] newer kernel drops packets?

[Edmond]

On Tue, 20 Feb 2007, Edmond wrote:

> I have a situation with an embedded router where I went from kernel
> 2.4.2 to to 2.4.34 (latest). Everything else has not been changed,
> including iptables rules. Just the kernel. But now DNS request packets
> coming in from the outside are being dropped by the default drop policy.
> IN FACT, if I clear the iptables chain, the DNS requests continue to
> be dropped so this has nothing to do with iptables.  Again, the same
> firewall rules work fine on the first kernel but not the second. They
> are both built with packet forwarding and ipfilter iptables/nat capability.


I have solved this problem. I actually misled you in my statement above.
What I had done was build a new machine with the identical hardware, but
of course the mac addresses of the network cards were different. What
happened was that the arp tables needed to be updated at my upstream
provider's router. As it turns out it updates every four hours. I had
never connected the router that long because it was dropping packets and
my assumption was a local problem. Last night I left it connected to see
if arp was the problem and this morning arp tables were updated and
everything working normally.

So now I have a solid state router booting with a CF card with about 3Mb
of stuff on it, with a kernel built with uCLibc instead of gnu libc.
Life is rosy.

Regards,

    Edmond