Page 1 of 2 12 LastLast
Results 1 to 10 of 11

Thread: Issue with firewalld after upgrading from 15.2 to 15.3

  1. #1
    Join Date
    May 2020
    Location
    Coloradical
    Posts
    55

    Default Issue with firewalld after upgrading from 15.2 to 15.3

    Hello, I finally got around to upgrading to 15.3 and now I'm seeing issues with my firewalld.
    This is my version.
    /var/log # firewall-cmd --version
    0.9.3

    The firewall service is running but it's not pulling tables correctly or showing my info via>
    iptables -L

    Someone on linuxquestions mentioned they downgraded and it worked for a while but I don't think that sounds like a good solution.

    Here's what it shows for the service.
    Code:
     firewalld.service - firewalld - dynamic firewall daemon 
         Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; vendor preset: disabled) 
         Active: active (running) since Sun 2022-05-01 17:23:09 MDT; 41min ago 
           Docs: man:firewalld(1) 
       Main PID: 9170 (firewalld) 
          Tasks: 2 (limit: 4545) 
         CGroup: /system.slice/firewalld.service 
                 └─9170 /usr/bin/python3 /usr/sbin/firewalld --nofork --nopid 
    
    May 01 17:23:08 asus2 systemd[1]: Starting firewalld - dynamic firewall daemon... 
    May 01 17:23:09 asus2 systemd[1]: Started firewalld - dynamic firewall daemon. 
    May 01 17:23:09 asus2 firewalld[9170]: ERROR: Calling pre func <bound method Firewall.full_check_config of <class 'firewall.core.fw.F>
    May 01 17:23:09 asus2 firewalld[9170]: ERROR: Calling pre func <bound method Firewall.full_check_config of <class 'firewall.core.fw.F>
    May 01 17:23:10 asus2 firewalld[9170]: ERROR: Calling pre func <bound method Firewall.full_check_config of <class 'firewall.core.fw.F>
    


    And here's some additional errors I noticed in /var/log/firewalld
    Code:
    2022-05-01 17:23:09 ERROR: Calling pre func <bound method Firewall.full_check_config of <class 'firewall.core.fw.Firewall'
    >(True, True, True, 'INIT', False, '', {}, [], True, True, True, False, 'off')>(()) failed: check_config_dict() takes 2 po
    sitional arguments but 3 were given 
    2022-05-01 17:23:09 ERROR: Calling pre func <bound method Firewall.full_check_config of <class 'firewall.core.fw.Firewall'
    >(True, True, True, 'RUNNING', False, 'public', {}, [], True, True, True, False, 'off')>(()) failed: check_config_dict() t
    akes 2 positional arguments but 3 were given
    


    Is this a known issue? I was thinking of removing it and re-installing but then I would likely need to recreate my rules.

    Thanks for any ideas or help.
    Asus Laptop running Dual boot Windows 10 + Leap 15.3

  2. #2
    Join Date
    Sep 2012
    Posts
    7,865

    Default Re: Issue with firewalld after upgrading from 15.2 to 15.3

    Quote Originally Posted by NUXGUY View Post
    The firewall service is running but it's not pulling tables correctly or showing my info via>
    iptables -L
    In Leap 15.3 firewalld defaults to nftables backend, not to iptables.

  3. #3
    Join Date
    Sep 2012
    Posts
    7,865

    Default Re: Issue with firewalld after upgrading from 15.2 to 15.3

    Quote Originally Posted by NUXGUY View Post
    Is this a known issue?
    https://bugzilla.opensuse.org/show_bug.cgi?id=1198214

    Remove and lock patch mentioned in this thread and revert to previous firewalld version before patch.

  4. #4
    Join Date
    May 2020
    Location
    Coloradical
    Posts
    55

    Default Re: Issue with firewalld after upgrading from 15.2 to 15.3

    Thanks for this info arvidjaar. It looks like I will need to install nftables since I don't currently have it installed.
    Also, my issue seems slightly different than this bug report post since mine actually starts up fine. I'll probably look into trying to reverting to the previous firewalld version for now to see if that works out for me.
    Asus Laptop running Dual boot Windows 10 + Leap 15.3

  5. #5
    Join Date
    May 2020
    Location
    Coloradical
    Posts
    55

    Default Re: Issue with firewalld after upgrading from 15.2 to 15.3

    Hello, they are claiming this is now fixed in this bug report

    https://bugzilla.suse.com/show_bug.cgi?id=1197911

    Any ideas how I'm supposed to apply said "fix"?

    Thanks
    Asus Laptop running Dual boot Windows 10 + Leap 15.3

  6. #6
    Join Date
    Sep 2012
    Posts
    7,865

    Default Re: Issue with firewalld after upgrading from 15.2 to 15.3

    Quote Originally Posted by NUXGUY View Post
    Any ideas how I'm supposed to apply said "fix"?
    Update your system.

  7. #7
    Join Date
    May 2020
    Location
    Coloradical
    Posts
    55

    Default Re: Issue with firewalld after upgrading from 15.2 to 15.3

    Quote Originally Posted by arvidjaar View Post
    Update your system.
    Oh, update to 15.4? It seems like I just finally got around upgrading to 15.3 but if firewalld works again in 15.4 I'll get the upgrade done before 15.3 goes EOL whenever that is.?
    Asus Laptop running Dual boot Windows 10 + Leap 15.3

  8. #8
    Join Date
    Sep 2012
    Posts
    7,865

    Default Re: Issue with firewalld after upgrading from 15.2 to 15.3

    Quote Originally Posted by NUXGUY View Post
    Oh, update to 15.4?
    I said "update your system" which means running "zypper up", "zyper patch" or some GUI to do the same.

    I did not say "upgrade to the next release".

  9. #9
    Join Date
    May 2020
    Location
    Coloradical
    Posts
    55

    Default Re: Issue with firewalld after upgrading from 15.2 to 15.3

    Quote Originally Posted by arvidjaar View Post
    I said "update your system" which means running "zypper up", "zyper patch" or some GUI to do the same.

    I did not say "upgrade to the next release".
    Good info. I just finally got back around to messing with my 15.3 again. I didn't check before running this zypper update but afterwards I noticed firewalld is no longer showing the error ouput I mentioned previously!

    Code:
    zypper refresh
    This updated some of my 15.3 repo's and then ended with>
    All repositories have been refreshed.
    After that I noticed iptables -L still didn't show any rules but as you mentioned previously per firewalld.conf the rules are now managed by nftables.

    Code:
    # FirewallBackend 
    # Selects the firewall backend implementation. 
    # Choices are: 
    #       - nftables (default) 
    #       - iptables (iptables, ip6tables, ebtables and ipset) 
    FirewallBackend=nftables
    
    So, now that I have a functioning firewall again (w00h00) I get to learn about nftables and helping keep my SUSE load secure.
    Asus Laptop running Dual boot Windows 10 + Leap 15.3

  10. #10
    Join Date
    Jun 2008
    Location
    Netherlands
    Posts
    30,950

    Default Re: Issue with firewalld after upgrading from 15.2 to 15.3

    I do not think that the advice anywhere mentioned zypper refresh. It mentioned zypper up, zypper ptach or similar using YaST > Software Management.

    Please, you are free to follow advice or not. But when you decide not to follow advice, then do not complain.
    Henk van Velden

Page 1 of 2 12 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •