You are not logged in.
- Topics: Active | Unanswered
#1 2014-02-27 04:26:06
- munzirtaha
- Member
- Registered: 2013-09-03
- Posts: 15
[SOLVED] What enabled ip_forward in my arch installation?
Hi,
I know the default is to have ip_forward = 0 in the kernel but somehow my system have ip_forward enabled. I couldn't figure out which application enabled it!
% grep -r ip_forward /etc/sysctl.d || sysctl net.ipv4.ip_forward
net.ipv4.ip_forward = 1
Last edited by munzirtaha (2014-03-02 18:28:09)
Offline
#2 2014-02-27 18:56:57
- Rexilion
- Member
- Registered: 2013-12-23
- Posts: 784
Re: [SOLVED] What enabled ip_forward in my arch installation?
I don't have it. Maybe it's installed with NetworkManager. You seem to have solved this issue yourself. But it's not clear to me where that file would be coming from.
This box does not have it.
fs/super.c : "Self-destruct in 5 seconds. Have a nice day...\n",
Offline
#3 2014-02-28 13:33:03
- munzirtaha
- Member
- Registered: 2013-09-03
- Posts: 15
Re: [SOLVED] What enabled ip_forward in my arch installation?
I checked another system with NetworkManager and ip_forwarding is not enabled so it's not the culprit. I didn't understand when you said I have solved the issue!
I don't have it. Maybe it's installed with NetworkManager. You seem to have solved this issue yourself. But it's not clear to me where that file would be coming from.
This box does not have it.
Offline
#4 2014-02-28 13:43:41
- Rexilion
- Member
- Registered: 2013-12-23
- Posts: 784
Re: [SOLVED] What enabled ip_forward in my arch installation?
I have misread your initial post. Sorry.
Maybe this?
grep -R ip_forward /usr/lib/sysctl.d/I'm guessing it's SystemD.
fs/super.c : "Self-destruct in 5 seconds. Have a nice day...\n",
Offline
#5 2014-02-28 14:08:28
- munzirtaha
- Member
- Registered: 2013-09-03
- Posts: 15
Re: [SOLVED] What enabled ip_forward in my arch installation?
grep -R ip_forward /usr/lib/sysctl.d/reveals nothing
Offline
#6 2014-02-28 14:36:07
- Rexilion
- Member
- Registered: 2013-12-23
- Posts: 784
Re: [SOLVED] What enabled ip_forward in my arch installation?
What software are you using for your network on this machine?
fs/super.c : "Self-destruct in 5 seconds. Have a nice day...\n",
Offline
#7 2014-03-01 22:53:05
- munzirtaha
- Member
- Registered: 2013-09-03
- Posts: 15
Re: [SOLVED] What enabled ip_forward in my arch installation?
I am using networkmanager 0.9.8.8-3
Offline
#8 2014-03-02 06:39:09
- Rexilion
- Member
- Registered: 2013-12-23
- Posts: 784
Re: [SOLVED] What enabled ip_forward in my arch installation?
I'm out of idea's. It could be that NetworkManager is doing it behind your back. Maybe boot without starting it and see if that helps?
fs/super.c : "Self-destruct in 5 seconds. Have a nice day...\n",
Offline
#9 2014-03-02 12:27:23
- munzirtaha
- Member
- Registered: 2013-09-03
- Posts: 15
Re: [SOLVED] What enabled ip_forward in my arch installation?
I did a systemctl disable NetworkManager and rebooted and still ip_forward = 1. It's something else. There should be a way to track which application set which value in /proc, ain't it?
Offline
#10 2014-03-02 13:38:09
- Rexilion
- Member
- Registered: 2013-12-23
- Posts: 784
Re: [SOLVED] What enabled ip_forward in my arch installation?
I did a systemctl disable NetworkManager and rebooted and still ip_forward = 1. It's something else. There should be a way to track which application set which value in /proc, ain't it?
Yes. It does not have to go through sysctl. But you could replace the sysctl with a script that echo's the parent pid and then looks it up with ps or top.
I would have no idea how to do that if it were to change it through /proc...
fs/super.c : "Self-destruct in 5 seconds. Have a nice day...\n",
Offline
#11 2014-03-02 14:07:34
- Spider.007
- Member
- Registered: 2004-06-20
- Posts: 1,176
Re: [SOLVED] What enabled ip_forward in my arch installation?
I would append '1' to the grub commandline to boot to single-user mode. Then use systemctl to start all the services that normally start on boot. Between each systemctl command; check if ip_forward is still disabled. This also tells you if the setting is hidden in /etc somewhere (when ip_forward would be enabled when entering single-user mode)
Offline
#12 2014-03-02 16:52:49
- ewaller
- Administrator
- From: Pasadena, CA
- Registered: 2009-07-13
- Posts: 20,594
Re: [SOLVED] What enabled ip_forward in my arch installation?
Just a guess, but do you have visualization software installed. VMWare? VirtualBox? Qemu? These provide virtual networks to their guest environments. They enable bridging and/or NAT to provide connectivity from the virtual world to the real world networks.
Nothing is too wonderful to be true, if it be consistent with the laws of nature -- Michael Faraday
The shortest way to ruin a country is to give power to demagogues.— Dionysius of Halicarnassus
---
How to Ask Questions the Smart Way
Offline
#13 2014-03-02 18:25:49
- munzirtaha
- Member
- Registered: 2013-09-03
- Posts: 15
Re: [SOLVED] What enabled ip_forward in my arch installation?
@Spider.007: I ended up using your method by booting in rescue mode and enabling the services one by one. I found it's libvirtd that enables ip forwarding. Thanks a lot.
@ewaller: you guessed it right!
Offline