Greetings:

I'm running the 7.1 VMX image
sentinel_server_7.1.0.0.x86_64-0.872.0.vmx.tar.gz.

During boot, an addon init script (/etc/init.d/after.local) is
executed:

/sbin/sysctl -p /etc/sysctl.conf

(Not sure why this doesn't work with the standard boot.syctl boot
script)

In the /etc/sysctl.conf file there are (among the normal sysctl
settings) the following lines:

# Sentinel Bug 795057
net.netfilter.nf_conntrack_udp_timeout = 0
# Sentinel Bug 793638
net.core.wmem_max = 67108864

The net.netfilter.nf_conntrack_udp_timeout = 0 setting is causing havoc
with UDP connections originating from the Sentinel 7 server.

NTP client and DNS client connections (originating from our Sentinel 7
server) are being dropped by SuSEfirewall/iptables.

I put a fix in by commenting that line out.

Will this cause issues with Sentinel 7.1 not working correctly? I can't
see UDP connections of any type benefiting from that setting.

-Rob Hobson


--
rkhobson
------------------------------------------------------------------------
rkhobson's Profile: https://forums.netiq.com/member.php?userid=2814
View this thread: https://forums.netiq.com/showthread.php?t=48298