X-Original-To: alpine-devel@lists.alpinelinux.org
Delivered-To: alpine-devel@lists.alpinelinux.org
Received: from irene.prov.us (irene.prov.us [69.209.46.150])
	by lists.alpinelinux.org (Postfix) with ESMTP id 18FA920DBDC
	for <alpine-devel@lists.alpinelinux.org>; Thu, 27 Aug 2009 08:13:09 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
	by irene.prov.us (Postfix) with ESMTP id A04405E80CD
	for <alpine-devel@lists.alpinelinux.org>; Thu, 27 Aug 2009 03:13:08 -0500 (CDT)
Received: from irene.prov.us ([127.0.0.1])
 by localhost (isp.provinetsolutions.com [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id 30614-09 for <alpine-devel@lists.alpinelinux.org>;
 Thu, 27 Aug 2009 03:13:08 -0500 (CDT)
Received: from sneezy.prov.us (sneezy.prov.us [69.209.46.3])
	(Authenticated sender: john_hohm_net)
	by irene.prov.us (Postfix) with ESMTP id 579C15E7F2C
	for <alpine-devel@lists.alpinelinux.org>; Thu, 27 Aug 2009 03:13:08 -0500 (CDT)
Date: Thu, 27 Aug 2009 03:13:08 -0500
From: John Keith Hohm <john@hohm.net>
To: alpine <alpine-devel@lists.alpinelinux.org>
Subject: [alpine-devel] iptables error on 2.6.26-vsgrsec
Message-ID: <20090827031308.237a156e@sneezy.prov.us>
X-Mailer: Claws Mail 3.5.0 (GTK+ 2.12.9; x86_64-pc-linux-gnu)
X-Mailinglist: alpine-devel
Precedence: list
List-Id: Alpine Development <alpine-devel.lists.alpinelinux.org>
List-Unsubscribe: 
	<mailto:alpine-devel+unsubscribe@lists.alpinelinux.org?subject=unsubscribe>
List-Post: <mailto:alpine-devel@lists.alpinelinux.org>
List-Help: <mailto:alpine-devel+help@lists.alpinelinux.org?subject=help>
List-Subscribe: 
	<mailto:alpine-devel+subscribe@lists.alpinelinux.org?subject=subscribe>
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: by amavisd-new at provinetsolutions.com

Alpine Linux is awesome, thanks so much to all the contributors.

This morning when I upgraded our Alpine Linux 1.7.27 firewall with
kernel 2.6.25-hardened-r10 to Alpine Linux 1.8.3 with kernel
2.6.26-vsgrsec I was unable to start shorewall; it complained like:

iptables: Memory allocation problem

Fortunately I was able to reboot into the upgraded system with the
older 2.6.25-hardened-r10 kernel and get the firewall working (well,
after some racoon.conf edits, but I digress).

How do I allow iptables to use more memory on the 2.6.26-vsgrsec kernel?
The server is not low on physical memory (it has 2 GB installed).  I
have a similar system with the same Alpine Linux 1.8.3 running the same
2.6.26-vsgrsec kernel and the same custom shorewall-4.2.10 packages but
a much simpler shorewall rule set, which starts up fine.

-- 
John Keith Hohm
<john@hohm.net>


---
Unsubscribe:  alpine-devel+unsubscribe@lists.alpinelinux.org
Help:         alpine-devel+help@lists.alpinelinux.org
---