[LARTC] Operation failed: such conntrack doesn't exist - when it does?

Tue, 31 Jul 2007 05:30:35 -0700

Hi gurus I want to destroy all state table entries/reset all connections for a particular client. When I issue conntrack -L -s <ip number>, it lists loads of state entries. When I issue conntrack -D -s <same ip number> it answers "NFNETLINK answers: No such file or directory Operation failed: such conntrack doesn't exist."
I have googled the problem, but can find only either unanswered or "there was actually really a bug in conntrack on that kernel verision, it is now fixed" posts from a while back. 

Is this an error or is my syntax wrong/I am doing something silly?


Debugging info, including kernel version and strace (I am root):


dragon:/home/nicolas# conntrack -L -s 172.16.98.255

tcp      6 431690 ESTABLISHED src=172.16.98.255 dst=209.85.135.xxx 
sport=4956 dport=80 packets=4 bytes=1033 src=209.85.135.xxx 
dst=130.226.169.xxx sport=80 dport=4956 packets=3 bytes=1091 [ASSURED] 
mark=0 use=1
tcp      6 431983 ESTABLISHED src=172.16.98.255 dst=207.46.110.xxx 
sport=1050 dport=1863 packets=327 bytes=16935 src=207.46.110.xxx 
dst=130.226.169.xxx sport=1863 dport=1050 packets=177 bytes=17375 
[ASSURED] mark=0 use=1
tcp      6 315337 ESTABLISHED src=172.16.98.255 dst=80.252.91.xxx 
sport=4882 dport=80 packets=16 bytes=6768 src=80.252.91.xxx 
dst=130.226.169.xxx sport=80 dport=4882 packets=13 bytes=8626 [ASSURED] 
mark=0 use=2


... more cut for clarity ...

dragon:/home/nicolas# conntrack -D -s 172.16.98.255
NFNETLINK answers: No such file or directory
Operation failed: such conntrack doesn't exist

dragon:/home/nicolas# uname -a
Linux dragon 2.6.18-4-686 #1 SMP Wed May 9 23:03:12 UTC 2007 i686 GNU/Linux
(Debian Etch)

strace

dragon:/home/nicolas# strace conntrack -D -s 172.16.98.255


execve("/usr/sbin/conntrack", ["conntrack", "-D", "-s", 
"172.16.98.255"], [/* 19 vars */]) = 0

uname({sys="Linux", node="dragon", ...}) = 0
brk(0)                                  = 0x804e000

access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or 
directory)
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 
0) = 0xb7fde000
access("/etc/ld.so.preload", R_OK)      = -1 ENOENT (No such file or 
directory)
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 
0) = 0xb7fdd000

open("/etc/ld.so.cache", O_RDONLY)      = 3
fstat64(3, {st_mode=S_IFREG|0644, st_size=17386, ...}) = 0
mmap2(NULL, 17386, PROT_READ, MAP_PRIVATE, 3, 0) = 0xb7fd8000
close(3)                                = 0

access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or 
directory)

open("/usr/lib/libnetfilter_conntrack.so.1", O_RDONLY) = 3

read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0000\24\0"..., 
512) = 512

fstat64(3, {st_mode=S_IFREG|0644, st_size=19232, ...}) = 0

mmap2(NULL, 22420, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) 
= 0xb7fd2000
mmap2(0xb7fd7000, 4096, PROT_READ|PROT_WRITE, 
MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x4) = 0xb7fd7000

close(3)                                = 0

access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or 
directory)

open("/lib/tls/i686/cmov/libdl.so.2", O_RDONLY) = 3

read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\20\f\0"..., 
512) = 512

fstat64(3, {st_mode=S_IFREG|0644, st_size=9592, ...}) = 0

mmap2(NULL, 12404, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) 
= 0xb7fce000
mmap2(0xb7fd0000, 8192, PROT_READ|PROT_WRITE, 
MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x1) = 0xb7fd0000

close(3)                                = 0

access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or 
directory)

open("/lib/tls/i686/cmov/libc.so.6", O_RDONLY) = 3

read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\240O\1"..., 
512) = 512

fstat64(3, {st_mode=S_IFREG|0644, st_size=1241392, ...}) = 0

mmap2(NULL, 1247388, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 
0) = 0xb7e9d000
mmap2(0xb7fc4000, 28672, PROT_READ|PROT_WRITE, 
MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x127) = 0xb7fc4000
mmap2(0xb7fcb000, 10396, PROT_READ|PROT_WRITE, 
MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0xb7fcb000

close(3)                                = 0

access("/etc/ld.so.nohwcap", F_OK)      = -1 ENOENT (No such file or 
directory)

open("/usr/lib/libnfnetlink.so.1", O_RDONLY) = 3

read(3, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0\220\v\0"..., 
512) = 512

fstat64(3, {st_mode=S_IFREG|0644, st_size=10956, ...}) = 0

mmap2(NULL, 14252, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 3, 0) 
= 0xb7e99000
mmap2(0xb7e9c000, 4096, PROT_READ|PROT_WRITE, 
MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 3, 0x2) = 0xb7e9c000

close(3)                                = 0

mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 
0) = 0xb7e98000

mprotect(0xb7fc4000, 20480, PROT_READ)  = 0

set_thread_area({entry_number:-1 -> 6, base_addr:0xb7e98ae0, 
limit:1048575, seg_32bit:1, contents:0, read_exec_only:0, 
limit_in_pages:1, seg_not_present:0, useable:1}) = 0

munmap(0xb7fd8000, 17386)               = 0
brk(0)                                  = 0x804e000
brk(0x806f000)                          = 0x806f000
socket(PF_NETLINK, SOCK_RAW, 12)        = 3
getsockname(3, {sa_family=AF_NETLINK, pid=0, groups=00000000}, [12]) = 0
time(NULL)                              = 1185884349
bind(3, {sa_family=AF_NETLINK, pid=0, groups=00000000}, 12) = 0
getsockname(3, {sa_family=AF_NETLINK, pid=1925, groups=00000000}, [12]) = 0
bind(3, {sa_family=AF_NETLINK, pid=1925, groups=00000000}, 12) = 0

open("/usr/lib/libnetfilter_conntrack//nfct_l3proto_ipv4-0.0.31.so", 
O_RDONLY) = 4
read(4, "\177ELF\1\1\1\0\0\0\0\0\0\0\0\0\3\0\3\0\1\0\0\0000\5\0"..., 
512) = 512

fstat64(4, {st_mode=S_IFREG|0644, st_size=3708, ...}) = 0

mmap2(NULL, 6632, PROT_READ|PROT_EXEC, MAP_PRIVATE|MAP_DENYWRITE, 4, 0) 
= 0xb7fdb000
mmap2(0xb7fdc000, 4096, PROT_READ|PROT_WRITE, 
MAP_PRIVATE|MAP_FIXED|MAP_DENYWRITE, 4, 0) = 0xb7fdc000

close(4)                                = 0

sendmsg(3, {msg_name(12)={sa_family=AF_NETLINK, pid=0, groups=00000000}, 
msg_iov(1)=[{"8\0\0\0\2\1\5\3\277(\257F\0\0\0\0\2\0\0\0$\0\1\200\24\0"..., 
56}], msg_controllen=0, msg_flags=0}, 0) = 56
recvmsg(3, {msg_name(12)={sa_family=AF_NETLINK, pid=0, groups=00000000}, 
msg_iov(1)=[{"$\0\0\0\2\0\0\0\277(\257F\205\7\0\0\376\377\377\3778\0"..., 
8192}], msg_controllen=0, msg_flags=0}, 0) = 36

dup(2)                                  = 4
fcntl64(4, F_GETFL)                     = 0x8002 (flags O_RDWR|O_LARGEFILE)
fstat64(4, {st_mode=S_IFCHR|0620, st_rdev=makedev(136, 0), ...}) = 0

mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 
0) = 0xb7fda000

_llseek(4, 0, 0xbfa51594, SEEK_CUR)     = -1 ESPIPE (Illegal seek)

write(4, "NFNETLINK answers: No such file "..., 45NFNETLINK answers: No 
such file or directory

) = 45
close(4)                                = 0
munmap(0xb7fda000, 4096)                = 0
close(3)                                = 0

write(2, "Operation failed: such conntrack"..., 47Operation failed: such 
conntrack doesn't exist

) = 47
exit_group(1)                           = ?
Process 1925 detached


_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc














    











					Reply via email to