Why strange error messages "FRADI" show up in the kernel log

Solution Unverified - Updated -

Issue

  • We are seeing some strange error messages show up in the kernel log. Some of the messages are coming from this iptables rule:
[root@hostname ~]# iptables -t filter -L FORWARD -n -v
Chain FORWARD (policy ACCEPT 372 packets, 19344 bytes)
 pkts bytes target     prot opt in     out     source               destination
  372 19344 LOG        all  --  *      *       0.0.0.0/0            0.0.0.0/0           LOG flags 0 level 4 prefix `FORWARD:'
[root@hostname ~]#

  • These can be identified via the "FORWARD:" at the beginning, but there are these other messages mixed in with them, they don't seem to have any sort of identifiable prefix and I am wondering what is causing them. Its this kernel version:

  • Here's the messages:

[root@hostname ~]# cat /var/log/kernel.txt
2013-05-07T14:22:31.223826-07:00 hostname kernel: imklog 5.8.10, log source = /proc/kmsg started.
2013-05-07T14:22:42.883663-07:00 hostname kernel: <>382.990 OWR:Nbn111 U=oSC4...6DT2104. E=4TS00 RC00 T=2I=34 FPOOTPST241DT8 IDW380RS00 Y RP0MR=x001
2013-05-07T14:22:42.883687-07:00 hostname kernel: 4[260237]FRADI=oOTl R=7101 S=0..61LN6 O=x0PE=x0TL6 D671D RT=C P=92 P=0WNO=25 E=x0SNUG= AK0b10 <4[260239]FRADI=oOTl R=7101 S=0..61LN6 O=x0PE=x0TL6 D671D RT=C P241DT8 IDW380RS00 Y RP0MR=x001
2013-05-07T14:22:42.883694-07:00 hostname kernel: 4[260241]FRADI=oOTl R=7101 S=0..61LN6 O=x0PE=x0TL5 D671D RT=C P=92 P=0WNO=25 E=x0SNUG= AK0b10 <>360242]FRADI=oOTl R=7101 S=0..61LN6 O=x0PE=x0TL5 D671D RT=C P=92 T8 IDW380RS00 Y RP0MR=x001
2013-05-07T14:22:42.883703-07:00 hostname kernel: 4[260244]FRADI=oOTl R=7101 S=0..61LN=TS00 RC00 T=7I=34 FPOOTPST241DT8 IDW380RS00 Y RP0MR=x001
2013-05-07T14:22:42.883881-07:00 hostname kernel: 4[260244]FRADI=oOTl R=7101 S=0..61LN6 O=x0PE=x0TL4 D671D RT=C P=92 P=0WNO=25 E=x0SNUG= AK0b1
2013-05-07T14:22:42.883897-07:00 hostname kernel: 4>[382.989 OWR:Nl U=oSC4...6DT2104. E=4TS00 RC00 T=9I=34 FPOOTPST241 DT8 IDW380RS00 Y RP0MR=x001
2013-05-07T14:22:42.883909-07:00 hostname kernel: 4[260254]FRADI=oOTl R=7101 S=0.. E=4TOS=x0PE=x0TL3 D671D RT=C P=92 P=0WNO=25 E=x0SNUG= AK0b10 <>2.9109]FRADI=oOTl R=7101 S=0..61LN6 O=x0PE=x0TL3 D671D RT=C P=92T8 INDW380RS00 Y RP0MR=x001
2013-05-07T14:22:42.883916-07:00 hostname kernel: 4[260258]FRADI=oOTlo SR=7101 S=0..61LN6 O=x0PEC=00 T=4I=34 FPOOTPST241DT8 IDW380RS00 Y RP0MR=x001
2013-05-07T14:22:42.883926-07:00 hostname kernel: 4[260252]FRADI=oOTl R=7101 S=0..61LN6 O=x0PE=x0TL3 D671D RT=C P=92 P=0WNO=25 E=x0SNU0MR=x001
2013-05-07T14:22:44.556994-07:00 hostname kernel: [328621.964851] FORWARD:IN=lo OUT=lo SRC=192.168.0.16 DST=192.168.0.1 LEN=40 TOS=0x00 PREC=0x00 TTL=21 ID=63742 DF PROTO=TCP SPT=29421 DPT=80 WINDOW=32850 RES=0x00 RST URGP=0 MARK=0xb01001
2013-05-07T14:22:44.557001-07:00 hostname kernel: [328621.964868] FORWARD:IN=lo OUT=lo SRC=192.168.0.16 DST=192.168.0.1 LEN=40 TOS=0x00 PREC=0x00 TTL=20 ID=63742 DF PROTO=TCP SPT=29421 DPT=80 WINDOW=32850 RES=0x00 RST URGP=0 MARK=0xb01001
[root@hostname ~]#
  • Any clue where these messages with "FRADI" in them are coming from? We are wondering if they might be related to some strangeness.

Environment

  • Red Hat Enterprise Linux 6.4
  • iptables
  • rsyslogd

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content