Public bug reported: This bug was already reported and fixed upstream, but the fix is not available in the Ubuntu package yet: https://project.nordu.net/browse/RADSECPROXY-72
In short, kernel since change http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/patch/?id=ef547f2ac16bd9d77a780a0e7c70857e69e8f23f (e.g. kernel in Xenial) will not accept connections when the listen backlog parameter is zero and syncookies are disabled. Activating UFW causes syncookies to be disabled. If UFW is enabled, this behavior persists until UFW is disabled AND the system is rebooted. Below there is a patch adding the fix to the package currently available in Xenial: https://launchpadlibrarian.net/305939567/radsecproxy_1.6.5-1build1_1.6.5-1build1+ppa0.diff.gz This fix is also available in our PPA https://launchpad.net/~ufscar/+archive/ubuntu/radsecproxy We are currently using this package in production and it is working correctly. ** Affects: radsecproxy (Ubuntu) Importance: Undecided Status: Confirmed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1663713 Title: radsecproxy in xenial cannot receive connections when syncookies are disabled To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/radsecproxy/+bug/1663713/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
