191530 iptables hypervm openvz apf
N/A
Pago na entrega
newbie having trouble with iptables on primary node
running HyperVM on primary node and having trouble installing apf on openvz vps's. I am sure it is something very simple that i am missing
it all started with this error when setting up apf on the openvz
iptables: Unknown error 4294967295
so i checked that iptables were enabled in Hyper VM for the vps and they are
so went to the primary node to check that iptables & modules were there and get
# iptables -V
iptables v1.3.5
# lsmod
Module Size Used by
iptable_nat 13316 4
simfs 9068 2
vzethdev 15112 0
ip_nat 21904 1 iptable_nat
ip_conntrack 60228 4 iptable_nat,ip_nat
nfnetlink 10648 2 ip_nat,ip_conntrack
vzdquota 41620 2 [permanent]
xt_tcpudp 7040 22
xt_length 6016 0
ipt_ttl 5888 0
xt_tcpmss 6272 0
ipt_TCPMSS 8192 0
iptable_mangle 8704 2
xt_multiport 7168 0
xt_limit 6656 0
ipt_tos 5760 0
ipt_REJECT 9344 0
iptable_filter 8576 3
ip_tables 18632 3 iptable_nat,iptable_mangle,iptable_filter
x_tables 19204 11 iptable_nat,xt_tcpudp,xt_length,ipt_ttl,xt_tcpmss,ipt_TCPMSS,xt_multiport,xt_limit,ipt_tos,ipt_REJECT,ip_tables
hidp 23552 2
rfcomm 42904 0
l2cap 29696 8 hidp,rfcomm
bluetooth 54372 5 hidp,rfcomm,l2cap
sunrpc 144828 1
vznetdev 20352 5
vzmon 45960 4 vzethdev,vznetdev
ipv6 260384 61 vzmon
vzdev 7556 6 vzethdev,vzdquota,vznetdev,vzmon
dm_mirror 29520 0
dm_mod 56856 1 dm_mirror
video 19460 0
sbs 18468 0
i2c_ec 8960 1 sbs
i2c_core 23680 1 i2c_ec
button 10640 0
battery 13700 0
asus_acpi 19352 0
ac 9092 0
parport_pc 29092 0
lp 16168 0
parport 37832 2 parport_pc,lp
sg 35612 0
pcspkr 7040 0
bnx2 84816 0
ide_cd 39840 0
serio_raw 10756 0
cdrom 37792 1 ide_cd
megaraid_sas 31280 3
sd_mod 22912 4
scsi_mod 131084 3 sg,megaraid_sas,sd_mod
ext3 123912 2
jbd 61608 1 ext3
ehci_hcd 33036 0
ohci_hcd 23324 0
uhci_hcd 25484 0
but when i try to start iptables on the primary node i get
#/etc/init.d/iptables start
Flushing firewall rules: [ OK ]
Setting chains to policy ACCEPT: nat mangle filter [ OK ]
Unloading iptables modules: [FAILED]
also when looking at iptables-config i see:
#nano /etc/sysconfig/iptables-config
# Load additional iptables modules (nat helpers)
# Default: -none-
# Space separated list of nat helpers (e.g. 'ip_nat_ftp ip_nat_irc'), which
# are loaded after the firewall rules are applied. Options for the helpers are
# stored in /etc/modprobe.conf.
IPTABLES_MODULES=""
# Unload modules on restart and stop
# Value: yes|no, default: yes
# This option has to be 'yes' to get to a sane state for a firewall
# restart or stop. Only set to 'no' if there are problems unloading netfilter
# modules.
IPTABLES_MODULES_UNLOAD="no"
# Save current firewall rules on stop.
# Value: yes|no, default: no
# Saves all firewall rules to /etc/sysconfig/iptables if firewall gets stopped
# (e.g. on system shutdown).
IPTABLES_SAVE_ON_STOP="no"
kernel info:
# uname -r
[url removed, login to view]
what i need is someone to help get the ip tables going so i can install apf and bfd on my vps's as well as explain what was done so if i need to do it again in the future i can thanks
ID do Projeto: #1937746