<div dir="ltr">Hi there,<div><br></div><div>I noticed that when checkpointing with the option -R, the iptables filters are not being cleaned. I checked CRIU's log and this is what i have:</div><div><br></div><div>...</div>
<div><div>pie: 1067: Restored</div><div>(00.059424) Unlock network</div><div>(00.059454) <span class="" style="white-space:pre"> </span>Running iptables [iptables -t filter -D INPUT --protocol tcp --source 10.0.3.1 --sport 50373 --destination 10.0.3.236 --dport 8080 -j DROP]</div>
<div>iptables: Bad rule (does a matching rule exist in that chain?).</div><div>(00.062168) Error (util.c:574): waitpid() failed: No child processes</div><div>(00.062193) Error (netfilter.c:69): Iptables configuration failed: No child processes</div>
<div>(00.062204) <span class="" style="white-space:pre"> </span>Running iptables [iptables -t filter -D OUTPUT --protocol tcp --source 10.0.3.236 --sport 8080 --destination 10.0.3.1 --dport 50373 -j DROP]</div><div>iptables: Bad rule (does a matching rule exist in that chain?).</div>
</div><div>...</div><div><br></div><div>Then, I checked my iptables after checkpointing and the exact rules are in there. I manually executed the above iptables commands after checkpointing and it successfully cleans the filters. Is this a known issue/bug or am doing something wrong?</div>
<div><br></div><div>I'm using criu to checkpoint a instance of Apache Server. To reproduce the scenario, you have to have an established connection to the server.</div><div><br></div><div>Cheers,</div><div>Fred</div>
<div>
<br></div></div>