Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Include module nf_conntrack in WSL2 kernel #8149

Closed
c0ffeec0der opened this issue Mar 14, 2022 · 4 comments
Closed

Include module nf_conntrack in WSL2 kernel #8149

c0ffeec0der opened this issue Mar 14, 2022 · 4 comments
Labels
feature

Comments

@c0ffeec0der
Copy link

Is your feature request related to a problem? Please describe.
Yes, Istio issue 37885 WSL2 kernel (5.10.60.1-microsoft-standard-WSL2) does not have nf_conntrack module

Describe the solution you'd like
Include module nf_conntrack

Describe alternatives you've considered
N/A

Additional context
Without the module istio dns proxy will not run. for more details check Istio issue 37885
@elsaco
Copy link

elsaco commented Mar 14, 2022
edited
Loading

@c0ffeec0der this is a list of Netfilter Conntrack options enabled in WSL kernel:

tux@ubuntu:~/kernel/Microsoft$ grep -i conntrack config-wsl
CONFIG_NF_CONNTRACK=y
CONFIG_NF_CONNTRACK_MARK=y
# CONFIG_NF_CONNTRACK_SECMARK is not set
# CONFIG_NF_CONNTRACK_ZONES is not set
# CONFIG_NF_CONNTRACK_PROCFS is not set
CONFIG_NF_CONNTRACK_EVENTS=y
# CONFIG_NF_CONNTRACK_TIMEOUT is not set
# CONFIG_NF_CONNTRACK_TIMESTAMP is not set
# CONFIG_NF_CONNTRACK_LABELS is not set
CONFIG_NF_CONNTRACK_AMANDA=y
CONFIG_NF_CONNTRACK_FTP=y
CONFIG_NF_CONNTRACK_H323=y
CONFIG_NF_CONNTRACK_IRC=y
CONFIG_NF_CONNTRACK_BROADCAST=y
CONFIG_NF_CONNTRACK_NETBIOS_NS=y
# CONFIG_NF_CONNTRACK_SNMP is not set
CONFIG_NF_CONNTRACK_PPTP=y
CONFIG_NF_CONNTRACK_SANE=y
CONFIG_NF_CONNTRACK_SIP=y
CONFIG_NF_CONNTRACK_TFTP=y
CONFIG_NETFILTER_XT_MATCH_CONNTRACK=y
# CONFIG_NF_CONNTRACK_BRIDGE is not set

CONFIG_NF_CONNTRACK is enabled and built into the kernel blob already.

Open /proc/config.gz to see all your running kernel options.

@c0ffeec0der
Copy link
Author

c0ffeec0der commented Mar 14, 2022
edited
Loading

Thanks @elsaco

How to enable "# CONFIG_NF_CONNTRACK_ZONES is not set"?

Can I refer to the steps listed here? Or can this be part of next wsl - - update? Thanks

@elsaco
Copy link

elsaco commented Mar 14, 2022

@c0ffeec0der to enable CONFIG_NF_CONNTRACK_ZONES download the latest WSL2-Linux_kernel from https://github.com/microsoft/WSL2-Linux-Kernel/archive/refs/tags/linux-msft-wsl-5.10.102.1.tar.gz and compile a new kernel. After a successful build, copy the new bzImage to the Windows filesystem and reference the new kernel in your .wslconfig file. Run wsl --shutdown to make sure the new kernel is used for new WSL instances.

This is a make config screenshot with the above setting enabled:

wsl_kernel_options

@c0ffeec0der
Copy link
Author

@elsaco Thank you very much! I am able to compile the kernel

@bviktor bviktor mentioned this issue Oct 20, 2022
Open
@Schille Schille mentioned this issue May 17, 2023
Open
@github-actions github-actions bot mentioned this issue Nov 15, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@elsaco @c0ffeec0der