[Chilli] Coova-Chilli Multi Tenanency Mode
Petr Štetiar
ynezz at true.cz
Thu Feb 7 06:35:22 UTC 2013
Robert White <rwhite at globalgossip.net> [2013-02-07 13:40:21]:
> All rules from up.sh except the following seem to get created:
>
> ipt_in -p tcp -m tcp --dport $UAMPORT --dst $ADDR -j ACCEPT
And sometimes some other rules :)
> It seems to only ever happen in multi-instance environments so maybe it is
> something to do with iptables locking and not allowing the insertion of the
> rule while another instance is trying to do the same? I'm not sure.
Yes, maybe something like that, I didn't investigated it in the detail either.
I've added simple locking into the coova-chilli init.d script and added
wildcard system wide iptables rules like "-i tun+" and it improved a lot.
-- ynezz
More information about the Chilli
mailing list