The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

installed ConfigServer Firewall But cant used medium level

Discussion in 'General Discussion' started by ppopcn, May 28, 2007.

  1. ppopcn

    ppopcn Member

    Joined:
    Nov 12, 2006
    Messages:
    17
    Likes Received:
    0
    Trophy Points:
    1
    when i used medium level and restat csf & lfd

    it show ::

    Code:
    
    
    Restarting csf...
    
    
    Flushing chain `INPUT'
    Flushing chain `FORWARD'
    Flushing chain `OUTPUT'
    Flushing chain `INVDROP'
    Flushing chain `LOGDROPIN'
    Flushing chain `LOGDROPOUT'
    Flushing chain `acctboth'
    Deleting chain `INVDROP'
    Deleting chain `LOGDROPIN'
    Deleting chain `LOGDROPOUT'
    Deleting chain `acctboth'
    Restarting bandmin acctboth chains for cPanel
    ACCEPT  all opt -- in lo out *  0.0.0.0/0  -> 0.0.0.0/0  
    ACCEPT  all opt -- in * out lo  0.0.0.0/0  -> 0.0.0.0/0  
    DROP  tcp opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  tcp dpt:67 
    DROP  udp opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  udp dpt:67 
    DROP  tcp opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  tcp dpt:68 
    DROP  udp opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  udp dpt:513 
    DROP  tcp opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  tcp dpt:520 
    DROP  udp opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  udp dpt:520 
    LOG  tcp opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_IN Blocked* ' 
    LOG  tcp opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_OUT Blocked* ' 
    LOG  udp opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_IN Blocked* ' 
    LOG  udp opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *UDP_OUT Blocked* ' 
    LOG  icmp opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_IN Blocked* ' 
    LOG  icmp opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *ICMP_OUT Blocked* ' 
    DROP  all opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  
    INVDROP  all opt -- in !lo out *  0.0.0.0/0  -> 0.0.0.0/0  state INVALID 
    INVDROP  tcp opt -- in !lo out *  0.0.0.0/0  -> 0.0.0.0/0  tcp flags:0x3F/0x00 
    INVDROP  tcp opt -- in !lo out *  0.0.0.0/0  -> 0.0.0.0/0  tcp flags:0x18/0x08 
    INVDROP  tcp opt -- in !lo out *  0.0.0.0/0  -> 0.0.0.0/0  tcp flags:0x30/0x20 
    INVDROP  all opt -- in * out !lo  0.0.0.0/0  -> 0.0.0.0/0  state INVALID 
    INVDROP  tcp opt -- in * out !lo  0.0.0.0/0  -> 0.0.0.0/0  tcp flags:0x3F/0x00 
    INVDROP  tcp opt -- in * out !lo  0.0.0.0/0  -> 0.0.0.0/0  tcp flags:0x30/0x20 
    DROP  all opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  
    DROP  all opt -- in !lo out *  200.41.1.220  -> 0.0.0.0/0  
    DROP  all opt -- in * out !lo  0.0.0.0/0  -> 200.41.1.220  
    DROP  all opt -- in !lo out *  222.135.116.172  -> 0.0.0.0/0  
    DROP  all opt -- in * out !lo  0.0.0.0/0  -> 222.135.116.172  
    DROP  all opt -- in !lo out *  207.104.16.68  -> 0.0.0.0/0  
    DROP  all opt -- in * out !lo  0.0.0.0/0  -> 207.104.16.68  
    DROP  all opt -- in * out *  81.3.250.0/24  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  218.50.1.0/24  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  59.125.204.0/24  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  204.16.208.0/24  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  218.10.111.0/24  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  193.252.49.0/24  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  202.88.149.0/24  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  209.177.120.0/24  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  201.235.244.0/24  -> 0.0.0.0/0  
    DSHIELD  all opt -- in !lo out *  0.0.0.0/0  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  122.8.0.0/15  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  128.13.0.0/16  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  132.232.0.0/16  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  134.33.0.0/16  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  138.252.0.0/16  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  143.49.0.0/16  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  148.3.0.0/16  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  152.147.0.0/16  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  167.97.0.0/16  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  170.67.0.0/16  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  192.160.44.0/24  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  192.67.16.0/24  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  193.110.136.0/24  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  193.19.120.0/23  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  202.14.69.0/24  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  204.14.0.0/21  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  88.206.80.0/20  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  89.145.128.0/20  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  89.187.192.0/19  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  89.233.64.0/18  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  89.32.203.0/24  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  89.35.0.0/23  -> 0.0.0.0/0  
    DROP  all opt -- in * out *  91.146.112.0/20  -> 0.0.0.0/0  
    SPAMHAUS  all opt -- in !lo out *  0.0.0.0/0  -> 0.0.0.0/0  
    REJECT  tcp opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  tcp dpt:25 reject-with icmp-port-unreachable 
    iptables: No chain/target/match by that name
    ACCEPT  tcp opt -- in * out *  0.0.0.0/0  -> 0.0.0.0/0  tcp dpt:25 OWNER UID match 0 
    Flushing chain `INPUT'
    Flushing chain `FORWARD'
    Flushing chain `OUTPUT'
    Flushing chain `DSHIELD'
    Flushing chain `INVDROP'
    Flushing chain `LOGDROPIN'
    Flushing chain `LOGDROPOUT'
    Flushing chain `SPAMHAUS'
    Flushing chain `acctboth'
    Deleting chain `DSHIELD'
    Deleting chain `INVDROP'
    Deleting chain `LOGDROPIN'
    Deleting chain `LOGDROPOUT'
    Deleting chain `SPAMHAUS'
    Deleting chain `acctboth'
    Error: iptables command [/sbin/iptables -v -I OUTPUT -p tcp --dport 25 -m owner --uid-owner 0 -j ACCEPT] failed, at line 537
    
    ...Done.
    Restarting lfd...
    Stopping lfd:[  OK  ]
    [  OK  ]
    Starting lfd:[  OK  ]
    
    ...Done.
    
    
    
    
    
    



    HELP ME !!!!!!!!!!!!
     
  2. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    Please use our support forum for csf. In particular read the VPS sticky thread and not the limitations of the Virtuozzo kernel regarding some iptables modules (notably ipt_owner).
     
Loading...

Share This Page