sosreport loads the bridge kernel module unintentionally, which sets net.bridge.bridge-nf-call-arptables = 1

Solution Verified - Updated -

Issue

  • When sosreport is run, some kernel modules are loaded as a side effect; the loading of unwanted kernel modules consumes memory and may cause other issues
  • The output of sysctl -a changes after a run of sosreport due to the bridge kernel module being loaded
  • The bridge module's sysctls are initialized to their defaults, instead of being properly initialized via /etc/sysctl.conf

  • Despite not having any bridge interfaces configured, you find you have these set in sysctl -a output:

    net.bridge.bridge-nf-call-arptables = 1
net.bridge.bridge-nf-call-iptables = 1
net.bridge.bridge-nf-call-ip6tables = 1

Environment

  • Red Hat Enterprise Linux 6

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content