--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: apf-firewall: Apf blocks mysql connection on 127.0.0.1
- From: "root@webx" <mislav@maxcom.hr>
- Date: Mon, 24 Oct 2016 10:05:22 +0200
- Message-id: <20161024080522.8874.29116.reportbug@web06.doing.ch>
Package: apf-firewall
Version: 9.7+rev1-3
Severity: important
There is a daily cronjob running which is restarting apf-firewall. However, sometimes
it breaks my system - to be specific - it somehow blocks connectivity for mysql on 127.0.0.1
and I'm not able to connect neither command line, websites are not working, MTA postfix (with ispconfig)
fails to check for table lookup (because it's connecting to with user/pass on 127.0.0.1. Localhost
connections are working normally. After stopped firewall with e.g. "apf -f" - on first F5 refresh all
websites are working, I'm able to connect in mysql through "mysql -p -h 127.0.0.1". This doesn't happen
every day, it happens on random basics and always in same time around 06:26AM - cronjob dailys are schedules
to run on 06:25AM. I can't reproduce the problem, but so far I know that stopping apf-firewal
fixes the problem. I don't even have to restart mysql/MTA - stopping apf is enough. Any idea what
could cause this?
-- System Information:
Debian Release: 8.5
APT prefers stable-updates
APT policy: (500, 'stable-updates'), (500, 'stable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.16.0-4-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) (ignored: LC_ALL set to en_US.UTF-8)
Shell: /bin/sh linked to /bin/bash
Init: systemd (via /run/systemd/system)
Versions of packages apf-firewall depends on:
ii iproute 1:3.16.0-2
ii iptables 1.4.21-2+b1
ii lsb-base 4.1+Debian13+nmu1
ii wget 1.16-1
apf-firewall recommends no packages.
apf-firewall suggests no packages.
-- Configuration Files:
/etc/apf-firewall/conf.apf changed [not included]
/etc/apf-firewall/deny_hosts.rules [Errno 13] Permission denied: u'/etc/apf-firewall/deny_hosts.rules'
/etc/apf-firewall/ds_hosts.rules [Errno 13] Permission denied: u'/etc/apf-firewall/ds_hosts.rules'
/etc/apf-firewall/glob_allow.rules [Errno 13] Permission denied: u'/etc/apf-firewall/glob_allow.rules'
/etc/apf-firewall/glob_deny.rules [Errno 13] Permission denied: u'/etc/apf-firewall/glob_deny.rules'
/etc/apf-firewall/preroute.rules changed [not included]
/etc/apf-firewall/sdrop_hosts.rules [Errno 13] Permission denied: u'/etc/apf-firewall/sdrop_hosts.rules'
/etc/cron.daily/apf-firewall changed [not included]
/etc/default/apf-firewall changed [not included]
-- no debconf information
--- End Message ---