Knowledgebase
iptables lock on rull
Posted by mixmox, 09-11-2010, 06:49 AM | hello.
i cant restart iptables and after try service iptables restart it lock on load rull and after 2 min ssh close.
[root@da ~]# service iptables restart
Flushing firewall rules: [ OK ]
Setting chains to policy ACCEPT: filter mangle [ OK ]
Unloading iptables modules: [ OK ]
Applying iptables firewall rules:
as you see it lock on this part "Applying iptables firewall rules:"
|
Posted by mixmox, 09-11-2010, 07:29 AM | iys my /etc/sysctl.conf file :
# Kernel sysctl configuration file for Red Hat Linux
#
# For binary values, 0 is disabled, 1 is enabled. See sysctl(8) and
# sysctl.conf(5) for more details.
# Controls IP packet forwarding
net.ipv4.ip_forward = 0
# Controls source route verification
net.ipv4.conf.default.rp_filter = 1
# Do not accept source routing
net.ipv4.conf.default.accept_source_route = 0
# Controls the System Request debugging functionality of the kernel
kernel.sysrq = 0
# Controls whether core dumps will append the PID to the core filename
# Useful for debugging multi-threaded applications
kernel.core_uses_pid = 1
# Controls the use of TCP syncookies
net.ipv4.tcp_syncookies = 1
# Controls the maximum size of a message, in bytes
kernel.msgmnb = 65536
# Controls the default maxmimum size of a mesage queue
kernel.msgmax = 65536
# Controls the maximum shared segment size, in bytes
kernel.shmmax = 4294967295
# Controls the maximum number of shared memory segments, in pages
kernel.shmall = 268435456
net.ipv4.icmp_echo_ignore_broadcasts = 0
net.ipv4.icmp_echo_ignore_all = 0
|
Posted by madaboutlinux, 09-11-2010, 07:59 AM | How do you get the SSH connection back? Do you have to reboot your server? BTW, try stopping and starting iptables instead of restarting, see what happens. Such problems can also occur because of some missing iptable modules.
|
Posted by mixmox, 09-11-2010, 08:29 AM | no i havent reboot my server.
see bellow:
[root@da get]# service iptables stop
Flushing firewall rules: [ OK ]
Setting chains to policy ACCEPT: mangle filter [ OK ]
Unloading iptables modules: [ OK ]
[root@da get]# service iptables start
Applying iptables firewall rules:
nothong change when stop/start instead of restart
|
Posted by madaboutlinux, 09-11-2010, 08:33 AM | So you mean the SSH connection gets closed and you can immediately open a new SSH session? If so, what is the output of
|
Posted by mixmox, 09-11-2010, 08:47 AM | it show me a long file. some part of this file is :
DROP all -- 79.127.99.185 anywhere
DROP all -- s4.40.clients.serverdeals.org anywhere
DROP all -- 3c.65.2d.static.xlhost.com anywhere
DROP all -- fcp1.iad.defenderhosting.com anywhere
DROP all -- 0.19.de.static.xlhost.com/24 anywhere
DROP all -- 212.120.200.10 anywhere
DROP all -- sly.privatedns.com anywhere
DROP all -- reitools.com anywhere
DROP all -- mail.finalpazarlama.com anywhere
DROP all -- 174.142.61.245 anywhere
DROP all -- lasvegas-nv-datacenter.com anywhere
DROP all -- greenbranchmedia.com anywhere
DROP all -- lasvegas-nv-datacenter.com anywhere
DROP all -- 65-254-224-37.yourhostingaccount.com anywhere
DROP all -- 109.162.136.147 anywhere
DROP all -- 78-40-231-190.netdirekt.com.tr anywhere
DROP all -- ip-70-38-64-133.static.privatedns.com anywhere
DROP all -- 207.108.125.253 anywhere
DROP all -- lasvegas-nv-datacenter.com anywhere
DROP all -- serversemidedicado.joinhost.com.br anywhere
DROP all -- lasvegas-nv-datacenter.com anywhere
DROP all -- 122-116-113-64.HINET-IP.hinet.net anywhere
DROP all -- 130.160.64.249 anywhere
DROP all -- 95.38.45.196 anywhere
|
|
Add to Favourites
Print this Article |
Also Read
Switching (Views: 594)