On Tuesday, 29 August 2017 4:49:47 AM AEST Pat Riehecky wrote:
> Scientific Linux 7.4 RC1 x86_64
>
> These are the notes for the "Release Candidate" of Scientific Linux 7.4
> ----------------------------------------------------------------------------
>
> KNOWN ISSUES
> ----------------------------------------------------------------------------
>
> Firewall fails to apply when using iptables-services
> if you use iptables and ip6tables on the same system, systemd
> tries to start them at the same time - and one may fail to
> load.
> Upstream bug:
> https://bugzilla.redhat.com/show_bug.cgi?id=1477413
Hi Pat,
Just as a quick note, I would suggest that treating this issue as a possible
blocker for the 7.4 release unless the patch included in the upstream BZ is
rolled in before release.
At the current state, any users not using firewalld *WILL* have problems
loading firewall rules (ie there won't be one) if they use both iptables and
ip6tables services.
CentOS included this patch in their 7.4 release to the CR branch - however I
note there is still a further fix required for this issue to be resolved
completely:
https://bugzilla.redhat.com/show_bug.cgi?id=1486803
We assume this is a Before: and After: statement in iptables.service and
ip6tables.service - but have no confirmation of this as yet.
Either way - I would be very cautious on a release without at least patching
the first issue in this chain.
--
Steven Haigh
📧 [log in to unmask] 💻 http://www.crc.id.au
📞 +61 (3) 9001 6090 📱 0412 935 897