Results 1 to 8 of 8

Thread: csf iptables problem

  1. #1
    Registered Member
    Join Date
    Jul 2004
    Posts
    88

    Default csf iptables problem

    Hi Everyone

    I am installing csf however I get the following iptable error, please can someone tell me what it means

    Code:
    Error: iptables command [/sbin/iptables -v -I OUTPUT 2 -i eth0 -j GDENY] failed, at line 383

  2. #2
    Registered Member mctDarren's Avatar
    Join Date
    Jan 2004
    Location
    New Jersey
    Posts
    666
    cPanel/WHM Access Level

    Root Administrator

    Default

    Is iptables installed in the kernel? Is this a VPS? OS you are running?

  3. #3
    Registered Member
    Join Date
    Jul 2004
    Posts
    88

    Default

    Hi

    Its a dedicated box not a VPS and it seems like IP tables is installed
    I can start and stop it and perform the various other commands, I am
    running AMD 64 Athlon 3200 CentOS 4 OS
    Last edited by Haloweb; 09-09-2006 at 10:43 AM.

  4. #4
    Registered Member
    Join Date
    Jul 2004
    Posts
    88

    Default

    well I thought the problem was more IP tables / cpanel realted rather than
    chirpys script hence I asked here

  5. #5
    Registered Member brianoz's Avatar
    Join Date
    Mar 2004
    Location
    Melbourne, Australia
    Posts
    1,153
    cPanel/WHM Access Level

    Root Administrator

    Default

    It's pretty pointless asking here, you need to ask the author of csf, chirpy.

  6. #6
    Registered Member This forum account has been confirmed by cPanel staff to represent a vendor. chirpy's Avatar
    Join Date
    Jun 2002
    Location
    Go on, have a guess
    Posts
    13,499

    Default

    Indeed. I've been tied up until now and it's quicker to comtact me directly if you find a problem. It's a bug in the script and will be fixed in the next release due out today.
    Jonathan Michaelson

    cPanel Server Configuration, Security and Antivirus/AntiSpam Services
    http://www.configserver.com

  7. #7
    Registered Member jimmshepard's Avatar
    Join Date
    Aug 2003
    Location
    Chicago
    Posts
    19

    Default Same Problem

    Flushing chain `INPUT'
    Flushing chain `FORWARD'
    Flushing chain `OUTPUT'
    ACCEPT all opt -- in lo out * 0.0.0.0/0 -> 0.0.0.0/0
    ACCEPT all opt -- in * out lo 0.0.0.0/0 -> 0.0.0.0/0
    LOG tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_IN Blocked* '
    LOG tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_OUT Blocked* '
    LOG udp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_IN Blocked* '
    LOG udp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_OUT Blocked* '
    LOG icmp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_IN Blocked* '
    LOG icmp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_OUT Blocked* '
    DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
    DROP all opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 state INVALID
    DROP tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x3F/0x00
    DROP tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x03/0x03
    DROP tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x06/0x06
    DROP tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x05/0x05
    DROP tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x11/0x01
    DROP tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x18/0x08
    DROP tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x30/0x20
    DROP all opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 state INVALID
    DROP tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x3F/0x00
    DROP tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x03/0x03
    DROP tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x06/0x06
    DROP tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x05/0x05
    DROP tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x11/0x01
    DROP tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x18/0x08
    DROP tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x30/0x20
    DSHIELD all opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0
    SPAMHAUS all opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0
    REJECT tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:25 reject-with icmp-port-unreachable
    iptables: No chain/target/match by that name
    ACCEPT tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:25 OWNER UID match 0
    Flushing chain `INPUT'
    Flushing chain `FORWARD'
    Flushing chain `OUTPUT'
    Flushing chain `DSHIELD'
    Flushing chain `LOGDROP'
    Flushing chain `SPAMHAUS'
    Deleting chain `DSHIELD'
    Deleting chain `LOGDROP'
    Deleting chain `SPAMHAUS'
    Error: iptables command [/sbin/iptables -v -I OUTPUT -p tcp --dport 25 -m owner --uid-owner 0 -j ACCEPT] failed, at line 469


    ...Done

  8. #8
    Registered Member This forum account has been confirmed by cPanel staff to represent a vendor. chirpy's Avatar
    Join Date
    Jun 2002
    Location
    Go on, have a guess
    Posts
    13,499

    Default

    No, that's a different problem - it suggest you don't have all the required iptables modules available in your kernel.
    Jonathan Michaelson

    cPanel Server Configuration, Security and Antivirus/AntiSpam Services
    http://www.configserver.com

Similar Threads

  1. Error: iptables command on CSF - NEED HELP!
    By rohit09 in forum New User Questions
    Replies: 3
    Last Post: 03-28-2012, 03:17 PM
  2. csf v5.34 IPtables Test Error
    By danswano in forum Security
    Replies: 3
    Last Post: 08-26-2011, 01:35 PM
  3. Replies: 14
    Last Post: 05-18-2011, 12:23 PM
  4. Disable CSF / iptables
    By elenlace in forum cPanel & WHM Discussions
    Replies: 1
    Last Post: 01-31-2007, 08:52 AM
  5. CSF error - can't initialize iptables
    By doulos61 in forum cPanel & WHM Discussions
    Replies: 2
    Last Post: 01-01-2007, 10:06 AM
bargain