Results 1 to 8 of 8

Thread: csf iptables problem

  1. #1
    Registered Member
    Join Date
    Jul 2004
    Posts
    88

    Default csf iptables problem

    Hi Everyone

    I am installing csf however I get the following iptable error, please can someone tell me what it means

    Code:
    Error: iptables command [/sbin/iptables -v -I OUTPUT 2 -i eth0 -j GDENY] failed, at line 383

  2. #2
    Registered Member mctDarren's Avatar
    Join Date
    Jan 2004
    Location
    New Jersey
    Posts
    668
    cPanel Access Level

    Root Administrator

    Default

    Is iptables installed in the kernel? Is this a VPS? OS you are running?

  3. #3
    Registered Member
    Join Date
    Jul 2004
    Posts
    88

    Default

    Hi

    Its a dedicated box not a VPS and it seems like IP tables is installed
    I can start and stop it and perform the various other commands, I am
    running AMD 64 Athlon 3200 CentOS 4 OS
    Last edited by Haloweb; 09-09-2006 at 11:43 AM.

  4. #4
    Registered Member
    Join Date
    Jul 2004
    Posts
    88

    Default

    well I thought the problem was more IP tables / cpanel realted rather than
    chirpys script hence I asked here

  5. #5
    Registered Member brianoz's Avatar
    Join Date
    Mar 2004
    Location
    Melbourne, Australia
    Posts
    1,154
    cPanel Access Level

    Root Administrator

    Default

    It's pretty pointless asking here, you need to ask the author of csf, chirpy.

  6. #6
    Registered Member This forum account has been confirmed by cPanel staff to represent a vendor. chirpy's Avatar
    Join Date
    Jun 2002
    Location
    Go on, have a guess
    Posts
    13,499

    Default

    Indeed. I've been tied up until now and it's quicker to comtact me directly if you find a problem. It's a bug in the script and will be fixed in the next release due out today.
    Jonathan Michaelson

    cPanel Server Configuration, Security and Antivirus/AntiSpam Services
    http://www.configserver.com

  7. #7
    Registered Member jimmshepard's Avatar
    Join Date
    Aug 2003
    Location
    Chicago
    Posts
    19

    Default Same Problem

    Flushing chain `INPUT'
    Flushing chain `FORWARD'
    Flushing chain `OUTPUT'
    ACCEPT all opt -- in lo out * 0.0.0.0/0 -> 0.0.0.0/0
    ACCEPT all opt -- in * out lo 0.0.0.0/0 -> 0.0.0.0/0
    LOG tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_IN Blocked* '
    LOG tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_OUT Blocked* '
    LOG udp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_IN Blocked* '
    LOG udp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_OUT Blocked* '
    LOG icmp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_IN Blocked* '
    LOG icmp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_OUT Blocked* '
    DROP all opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0
    DROP all opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 state INVALID
    DROP tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x3F/0x00
    DROP tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x03/0x03
    DROP tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x06/0x06
    DROP tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x05/0x05
    DROP tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x11/0x01
    DROP tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x18/0x08
    DROP tcp opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x30/0x20
    DROP all opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 state INVALID
    DROP tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x3F/0x00
    DROP tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x03/0x03
    DROP tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x06/0x06
    DROP tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x05/0x05
    DROP tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x11/0x01
    DROP tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x18/0x08
    DROP tcp opt -- in * out venet0 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x30/0x20
    DSHIELD all opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0
    SPAMHAUS all opt -- in venet0 out * 0.0.0.0/0 -> 0.0.0.0/0
    REJECT tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:25 reject-with icmp-port-unreachable
    iptables: No chain/target/match by that name
    ACCEPT tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp dpt:25 OWNER UID match 0
    Flushing chain `INPUT'
    Flushing chain `FORWARD'
    Flushing chain `OUTPUT'
    Flushing chain `DSHIELD'
    Flushing chain `LOGDROP'
    Flushing chain `SPAMHAUS'
    Deleting chain `DSHIELD'
    Deleting chain `LOGDROP'
    Deleting chain `SPAMHAUS'
    Error: iptables command [/sbin/iptables -v -I OUTPUT -p tcp --dport 25 -m owner --uid-owner 0 -j ACCEPT] failed, at line 469


    ...Done

  8. #8
    Registered Member This forum account has been confirmed by cPanel staff to represent a vendor. chirpy's Avatar
    Join Date
    Jun 2002
    Location
    Go on, have a guess
    Posts
    13,499

    Default

    No, that's a different problem - it suggest you don't have all the required iptables modules available in your kernel.
    Jonathan Michaelson

    cPanel Server Configuration, Security and Antivirus/AntiSpam Services
    http://www.configserver.com

Similar Threads

  1. Error: iptables command on CSF - NEED HELP!
    By rohit09 in forum General Discussion
    Replies: 3
    Last Post: 03-28-2012, 04:17 PM
  2. Replies: 14
    Last Post: 05-18-2011, 01:23 PM
  3. Error: iptables command on CSF - NEED HELP!
    By rohit09 in forum cPanel Developers
    Replies: 0
    Last Post: 12-19-2010, 04:09 AM
  4. Disable CSF / iptables
    By elenlace in forum General Discussion
    Replies: 1
    Last Post: 01-31-2007, 09:52 AM
  5. iptables flushing / csf restarting
    By verdon in forum General Discussion
    Replies: 6
    Last Post: 09-30-2006, 08:11 AM
bargain