Fwd: Progress of #1337281

Tim Gardner tim.gardner at canonical.com
Mon Aug 18 12:48:34 UTC 2014 

So, can anyone reconstruct what happened here ? I thought this was
applied ? These reverts should also have come down through stable.

rtg

-------- Forwarded Message --------
Subject: 	Progress of #1337281
Date: 	Sat, 16 Aug 2014 12:00:16 -0400
From: 	Charles Jordan <charles at ddbolt.net>
Reply-To: 	charles at ddbolt.net
To: 	tim.gardner at canonical.com
CC: 	tim.gardner at ubuntu.com



Tim,



I noticed that you were assigned to look into issue #1337281 (network
problems with NAT traffic after update to kernel 3.2.0-65).This issuehas
scared me away from using Ubuntu for our customer’s production servers
and firewalls. I really hate this because I have been a strong Ubuntu
advocate for nearly ten years now singing the praises of the LTS
versions. This bug has forced me to give up two full weekends upgrading
customers from Ubuntu 12.04LTS to Debian 7.5 because of the horrific
upload delay & speed-degradation on all NAT traffic passing through the
Ubuntu firewalls. Other customers continued to call and we eventually
figured out that configuring Grub to boot older versions of the kernel
suppressed the issue for now. This leaves me concerned about something
like this happening in the future due to leaving automatic security
updates turned on. I was also disappointed when 3.2.0-67 was released
and discovered that the bug was still there. Does anyone know when this
problem will be addressed? After doing some research during the switch
to Debian, I came to several conclusions.



_One_: Debian may be a better choice because they release when things
are ready and thoroughly tested. Ubuntu releases on a rigid timeline
whether packages are ready or not. Because of this Debian seems to be
the more stable OS.



_Two:_ Ubuntu is a little more secure out of the box than Debian.
However, by disabling the root account and adding a user to the sudo
group they are now pretty much the same.



_Three:_ Ubuntu seems to do a better job with documentation and
How-To’s. It’s nice to have some things from an official centrally
controlled source.



_Four:_ The LTS versions were the better choice for servers until the
3.2.0-65 kernel was released and broke all of our customer’s production
servers. Now I am going to have to deal with upgrading Debian every 3-4
years instead of 5-6 I would have with the LTS versions.



I am open to any suggestion, comments or views you may have in the matter.



Thank you for your time and consideration,
Charles Jordan

Lead Developer for Digital Deadbolt, L.L.C.

678-799-4567

More information about the kernel-team mailing list