Results 1 to 5 of 5
  1. #1
    Join Date
    Sep 2004
    Location
    India
    Posts
    222

    Problem adding ESTABLISHED rule using iptables in openvz

    Hi,

    I have openvz VE. I am trying to add iptables rules. I have trouble adding ESTABLISHED rules. When I try to add

    iptables -I INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT

    it gives an error message that

    iptables: Invalid argument

    What should be the problem?

    I have debian VE 5.0.2
    Thanks,
    Netedge Technology 24x7 webhosting support, Monthly server management, Dedicated support.
    Nelichso Live chat support software

  2. #2
    Join Date
    May 2009
    Location
    SLASH ROOT
    Posts
    853
    Make sure that your VE's has iptables support and also make sure that you have loaded the needed iptables module.

    Open '/etc/vz/vz.conf' and locate 'IPTABLES'.

    I am listing some of the common modules below:


    IPTABLES="ipt_REJECT ipt_tos ipt_limit ipt_multiport iptable_filter iptable_mangle ipt_ttl ipt_state iptable_nat ip_nat_ftp ip_tables ipt_conntrack ip_conntrack_ftp ipt_LOG"

    Once that is done, restart VZ.

  3. #3
    Join Date
    Sep 2004
    Location
    India
    Posts
    222
    Hi,

    Thanks for your reply. I have to add these modules on main server of /etc/vz/vz.conf right?
    Thanks,
    Netedge Technology 24x7 webhosting support, Monthly server management, Dedicated support.
    Nelichso Live chat support software

  4. #4
    Join Date
    May 2009
    Location
    SLASH ROOT
    Posts
    853

  5. #5
    Join Date
    Oct 2006
    Location
    /usr/src/linux/
    Posts
    699
    Make sure you load the modules on the hardware node
    Code:
    modprobe ipt_MASQUERADE
    modprobe ipt_helper
    modprobe ipt_REDIRECT
    modprobe ipt_state
    modprobe ipt_TCPMSS
    modprobe ipt_LOG
    modprobe ipt_TOS
    modprobe iptable_nat
    modprobe ipt_length
    modprobe ipt_tcpmss
    modprobe iptable_mangle
    modprobe ipt_limit
    modprobe ipt_tos
    modprobe iptable_filter
    modprobe ipt_helper
    modprobe ipt_tos
    modprobe ipt_ttl
    modprobe ipt_REJECT
    VPSnoc.com offers high quality Xen OpenVZ & Windows Virtual Private Servers at affordable prices.
    99.95% Uptime | 24/7/365 Support | Unmetered bandwidth.
    Follow us: twitter.com/VPSnoc

Similar Threads

  1. Delete rule in iptables
    By Adwis in forum Hosting Security and Technology
    Replies: 3
    Last Post: 08-15-2011, 12:15 PM
  2. Iptables and related/established connections problem
    By ldl in forum Hosting Security and Technology
    Replies: 5
    Last Post: 04-13-2009, 06:43 PM
  3. The VPS iptables rule limit
    By persianwhois in forum Hosting Security and Technology
    Replies: 3
    Last Post: 08-07-2008, 10:59 AM
  4. iptables rule for ftp
    By SmartTux in forum Hosting Security and Technology
    Replies: 4
    Last Post: 01-07-2005, 12:38 PM
  5. iptables rule assistance
    By enquire in forum Hosting Security and Technology
    Replies: 3
    Last Post: 09-03-2004, 02:56 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •