CSF + IPTables, Have To Restart CSF After Reboot
Jun 3, 2008
We changed our SSH port (for the slight added security that this offers) and updated our CSF config with the new port so that we can accept connections on this port.
We restarted CSF and we could connect successfully on the new port. When the server is rebooted connections are refused on the port until we *RESTART* CSF then it's all good again.
I would think being that we opened the port in CSF's config that on reboot the port would be opened back up but this is not happening and any time the server is rebooted we have to restart the firewall.
Does anybody have any suggestions on how to "fix" this or at least make it so we don't have to manually restart the firewall?
View 6 Replies
ADVERTISEMENT
Jul 1, 2007
I have configured the iptables ruleset to fit my taste, however after I did a reboot, my server still loaded the old one, any steps did I missed ?
What i did was :
1. edit rules
2. iptables-save > firewall.log
3. service iptables save
4. reboot
View 2 Replies
View Related
Jun 27, 2007
I'm running CentOS 4.4 32 bit.
At the moment every time I reboot my server I have to execute:
# iptables --flush
# iptables --zero
just to be able to access the server. (Though it does allow SSH to access before executing those).
And I figured out that I must do something to /etc/sysconfig/iptables to permanently be able to access the server without those commands after reboot. Right?
Below is the file's contents:
# Firewall configuration written by system-config-securitylevel
# Manual customization of this file is not recommended.
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:RH-Firewall-1-INPUT - [0:0]
-A INPUT -j RH-Firewall-1-INPUT
-A FORWARD -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -i lo -j ACCEPT
-A RH-Firewall-1-INPUT -p icmp --icmp-type any -j ACCEPT
-A RH-Firewall-1-INPUT -p 50 -j ACCEPT
-A RH-Firewall-1-INPUT -p 51 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp --dport 5353 -d 224.0.0.251 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited COMMIT
What do I need to do?
View 1 Replies
View Related
May 5, 2009
I shut down iptables on my dedi to try to install Poweradmin but, when the install did not work (probably because DirectAdmin was controlling files and processes I needed for the package) I attempted to restart iptables by running "/etc/init.d/iptables restart" and "service iptables start". It didn't restart. I restarted the webserver running "/etc/init.d/httpd restart". I even rebooted the dedi. Still, no iptables.
View 11 Replies
View Related
Apr 26, 2008
I do not know too much about iptables in general as I mostly use APF or CSF firewall.
However, I have a virtuozzo vps node that uses iptables by default and it always locks up on a reboot. Even that, it even causes the server to lock up as well, then needing a reboot. What would cause that and how do I remedy this? The node is using Centos 3.6 at this time. Right now, it just pings intermittently.
View 6 Replies
View Related
Sep 13, 2014
I am having to restart https after a reboot in order to get the virtual hosts working.
If I DON'T restart https, all I get is the system default page and NOT the individual vhost index pages.
View 4 Replies
View Related
Jul 8, 2015
I have a strange issue on a Plesk 12 VPS. Sometimes the sites result in a "502 Bad Gateway (nginx)". This happens 1 or 2 times a day on different times.
In the httpd log I see a record "can't apply process slot" and in nginx log I see "connect() failed (111: Connection refused) while connecting to upstream" but restarting apache and/or nginx will not always result in a working site.
When I restart iptables everything is working fine again.
View 5 Replies
View Related
Jan 5, 2008
I execute the following commands, in the following order:
iptables --flush
iptables --zero
iptables -A INPUT -s 218.65.12.161 -j DROP
will that last command successfully ban that IP until reboot?
If not, what needs to be done? I can't access my site if I don't flush + zero iptables first but I need to be able to ban with iptables.
View 2 Replies
View Related
Nov 4, 2008
I have a dedicated server, on Debian Etch.
When I type a command with putty, the connection is closed immediately. I tried shutdown-r now and reboot, halt, do nothing to console closes and nothing happens.
After a hundred connection, I can use ls, su and kill.
I think it's the fact that the partition is corrupted. I can not Hardware reboot the server because CTN1 is "out of business".
Do you know another way to restart the server
View 3 Replies
View Related
Aug 20, 2007
VPS isn't rebooting by itself when it goes down. Anyone has any program/script that monitors heartbeat of the server? Like when it goes down, the program will automatically reboots the system. I know there's such a script out there but I forgot what it called.
View 2 Replies
View Related
Jun 1, 2009
how to configure a periodic reboot, for example, each 4h the server will be reboot automatic.
i think i do configure a cron, but i can't find anything for periodic rebooting on freebsd.
this is a temporary solution for a issue of php.
View 13 Replies
View Related
Jan 8, 2008
I had to reboot my server and about 20 minutes later I tried to access the web site but the page was not found... I am able to login to SSH. However, I am not familiar with *nix or the workings of CPanel... What should I do to get the sites back online?
View 9 Replies
View Related
Jan 4, 2008
After a graceful reboot I am having problems with a few things.
First cpsrvd and lfd failed to start, but I fixed it doing this:
rm -f /usr/local/cpanel/cpanel
rm -f /scripts/installgd
rm -f /scripts/cleanmd5
rm -f /scripts/upcp
But next to all the drives it says "No DMA! (Click to Enable)", I click that and it says things:
Quote:
EIDE Hard Drive Optimizations Enabled
/dev/hdc:
setting 32-bit IO_support flag to 1
IO_support = 1 (32-bit)
But after going back to Service Status it still says that.
So I tried to enable it through a command by typing:
sudo hparm -d1 /dev/hdc5
And get this error:
Quote:
/dev/hdc5:
setting using_dma to 1 (on)
HDIO_SET_DMA failed: Invalid argument
using_dma = 0 (off)
View 7 Replies
View Related
Mar 18, 2008
so my server dies every day and requires human intervention to fully restart all service to have my site work properly. i suspect sigterm issues as it fails to restart all service as website is still down so i always have to reboot it.
Tried recompile apache with no success
[Tue Mar 18 06:51:27 2008] [error] [client 203.160.1.39] request failed: erroneous characters after protocol string: If-Modified-Since: Wed, 21 Nov 2007 06:16:52 GMT
[Tue Mar 18 10:03:18 2008] [error] Bad pid (7465) in scoreboard slot 16
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27848) in scoreboard slot 17
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27434) in scoreboard slot 18
[Tue Mar 18 10:03:18 2008] [error] Bad pid (30782) in scoreboard slot 19
[Tue Mar 18 10:03:18 2008] [error] Bad pid (7465) in scoreboard slot 16
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27848) in scoreboard slot 17
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27434) in scoreboard slot 18
[Tue Mar 18 10:03:18 2008] [error] Bad pid (30782) in scoreboard slot 19
[Tue Mar 18 10:03:18 2008] [error] Bad pid (7465) in scoreboard slot 16
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27848) in scoreboard slot 17
[Tue Mar 18 10:03:18 2008] [error] Bad pid (27434) in scoreboard slot 18
[Tue Mar 18 10:03:18 2008] [error] Bad pid (30782) in scoreboard slot 19
[Tue Mar 18 10:03:18 2008] [notice] caught SIGTERM, shutting down
[Tue Mar 18 10:03:20 2008] [notice] mod_security/1.9.5 configured - Apache/1.3.39 (Unix) PHP/5.2.5
[Tue Mar 18 10:03:20 2008] [notice] Any You Like mod_ssl/2.8.30 OpenSSL/0.9.8g mod_perl/1.29 FrontPage/5.0.2.2510 configured -- resuming normal operations
[Tue Mar 18 10:03:20 2008] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin/suexec)
[Tue Mar 18 10:03:20 2008] [notice] Accept mutex: sysvsem (Default: sysvsem)
View 1 Replies
View Related
Mar 7, 2008
I'm finding that my server doesn't like to reboot gracefully. Either selecting "graceful server reboot" in WHM or actually typing "reboot" in SSH, which then tells me the server is shutting down. My server is then incommunicato indefinitely until I actually do a hard reset remotely.
Is this common? Is there some way to find out why this is happening?
View 3 Replies
View Related
Apr 16, 2008
I'm worried a server is dead, and I haven't made any backups of the database
Server went down last night, submitted a reboot request and now the server is not responding to SSH.
It does respond to ping, so I'm assuming Linux might have booted up OK
Has anyone experience with this type of issue?
View 3 Replies
View Related
Jul 10, 2008
What's an acceptable time for rebooting a machine?
I send an email to midphase to get my machine rebooted and I wait nearly half an hour. Even put 911.
Pacifirack would have got it done in under 5 minutes
View 6 Replies
View Related
Oct 24, 2008
reboot my vps every 30 min automatically in my hypervm control panel. How can i do that?
View 12 Replies
View Related
Mar 11, 2008
for testing reboots? Basically, the goal is to avoid having a reboot fail leading to support or reinstall costs.
Right now, I'm using qemu -snapshot /dev/hda, but that obviously has limitations.
View 2 Replies
View Related
May 6, 2007
way to make remote reboot/start/shutdown?
it could be cool to be able to do it from a web interface in stead off by hand
View 6 Replies
View Related
Jan 23, 2007
So I was trying to run a backup process in Plesk 8.1 and the whole panel froze up on me (it's happened numerous times before).
Anyway, since the panel was all frozen up I just went into SSH and did a simple "reboot" (also, as done before many times). Only problem is, this time after I did the reboot the server never actually came back online... it seems to be locked up or something, I have no idea what.
I called my host and they are looking into it but they have no idea what's going on either and it's taking them forever to figure it out all the meanwhile my sites are down.... this isn't good.
Does anyone have any suggestions or advice as to why this could be occuring?
View 2 Replies
View Related
Nov 20, 2007
I know there are tons out there, but what's the best bang for your buck?
What's a good remote reboot that allows client to do it themselves that doesn't hurt your pockets too much?
View 14 Replies
View Related
Aug 6, 2007
Just a general question regarding the frequency which you all reboot your linux servers.
Mine has been up for 178 days, and is running sweet as a nut (touch wood). I was just wondering if it's worth giving it a reboot anytime soon, or if not, how long to give it before rebooting?
View 14 Replies
View Related
Jul 3, 2007
I have directory shared by NFS on server1 this directory mounted at startup on server2.
problem happened when twice servers restarted and server2 started before server1. directory not mounted I must mount it manually.
View 4 Replies
View Related
Jul 19, 2007
One of my server's http daemon is restarting more often and it doesn't have any control panel. How can I checked the load or memory usage history?
View 3 Replies
View Related
Oct 26, 2009
Does anyone have any recommendations for colocation providers in the LA area or recommendations for a PDU that has remote reboot capabilities (small budget, nonprofit organization)? We have a total of 9 servers.
View 9 Replies
View Related
Jul 12, 2009
my VPS didn't come online after a reboot(reboot via SSH). After that I tried to reboot it via HyperVM but I got an error like Couldn't stop VPS.
I'm wondering, is one of those files chmoded to 700 and chowned to root:root a problem?
chmod 700 /usr/bin/perl
chmod 700 /usr/bin/python
chmod 700 /bin/rm
chmod 700 /bin/uname
chmod 700 /bin/top
chmod 700 /bin/chown
chmod 700 /usr/bin/id
chmod 700 /usr/bin/as
chmod 700 /usr/bin/finger
chmod 700 /usr/bin/w
chmod 700 /usr/bin/locate
chmod 700 /usr/bin/whereis
chmod 700 /sbin/ifconfig
chmod 700 /usr/bin/pico
chmod 700 /usr/bin/which
chmod 700 /usr/bin/make
chmod 700 /bin/rpm
chmod 700 /bin/ls
chmod 700 /usr/bin/wget
chmod 700 /bin/cat
chmod 700 /usr/bin/nano
chmod 700 /usr/bin/vim
chmod 700 /bin/vi
chmod 700 /bin/grep
chmod 700 /usr/bin/find
chmod 700 /bin/ln
View 2 Replies
View Related
Sep 8, 2008
I ordered a leaseweb express server 4 box with windows server 2003 and have been running it, installed some software etc which worked out fine.
Anyways, I wanted to disable tcp/ip filtering which I did and afterwards it prompted me that I would have to reboot the server for the changes to take place, I clicked ok and it rebooted. Now I just can't connect with remote desktop, I tried everything.
I'm guessing it either shut down or didn't reboot properly? I tried sending an email to leaseweb support 2 days ago but still no shadow of any reply..
It says that I can reboot the server using the SSC but when I log in there, I can't really find any reboot option.
View 13 Replies
View Related
Feb 26, 2008
Any advice on setup of remote hard reboot/reset on colocated server.
View 11 Replies
View Related
Jun 22, 2008
I've got an old passivley cooled Pentium II box which I am turning into a silent File/Backup server for our LAN at home. Naturally for stability and performance on old hardware, I am running Linux.
The problem I have is that when you reboot the machine, it ends all processes, unmounts etc as usual, but after that the screen just blacks out and it doesn't go anywhere. I have to physically reboot the machine.
During startup theres a message saying BIOS is earlier than 1999, you should set ACPI=FORCE in Grub. I added this and also tried the noacpi and noacip options to no avail.
Windows ran on this fine before so I don't see why Linux would have an issue.
View 4 Replies
View Related
Dec 7, 2008
I have a Centos 5.2 box with Cpanel/WHM. A couple days ago it rebooted.
I checked /var/log/messages and I can see where it rebooted, but I can't find anything that indicates why.
I'm trying to figure out if this is a hardware issue or software issue/crash.
I do have Nagios istalled, and it seems it saved some data right before the server rebooted. Not sure if this is a simple coincidence.
Dec 4 11:53:35 miles nagios: Auto-save of retention data completed successfully.
Dec 4 11:56:14 miles syslogd 1.4.1: restart.
Dec 4 11:56:14 miles kernel: klogd 1.4.1, log source = /proc/kmsg started.
Dec 4 11:56:14 miles kernel: Linux version 2.6.18-92.1.17.el5PAE (mockbuild@builder16.centos.org) (gcc version 4.1.2 20071124 (Red Hat 4.1.2-42)) #1 SMP Tue Nov 4 14:17:52 EST 2008
Dec 4 11:56:14 miles kernel: BIOS-provided physical RAM map:
Dec 4 11:56:14 miles kernel: BIOS-e820: 0000000000000000 - 000000000009f000 (usable)
how to trouble shoot this?
View 1 Replies
View Related