我在跑CentOS 8网络服务器,最近我遇到了一些问题CSF 防火墙, 这脑脊液服务正在运行,但低频频谱分析仪失败。
我做了一些研究并且能够通过以下方式修复它iptables --flush(但我不确定这是否是问题所在!)。
然而,似乎存在一个问题iptables服务,当我启动它时出现此错误:
iptables.service - IPv4 firewall with iptables
Loaded: loaded (/usr/lib/systemd/system/iptables.service; enabled; vendor preset: disabled)
Active: failed (Result: exit-code) since Tue 2021-06-22 23:46:44 EET; 13min ago
Process: 11362 ExecStart=/usr/libexec/iptables/iptables.init start (code=exited, status=1/FAILURE)
Main PID: 11362 (code=exited, status=1/FAILURE)
Jun 22 23:46:44 server.ahmedsuror.com systemd[1]: Starting IPv4 firewall with iptables...
Jun 22 23:46:44 server.ahmedsuror.com iptables.init[11362]: iptables: Applying firewall rules: iptables-restore v1.8.4 (nf_tables): Chain 'INVDROP' does not exist
Jun 22 23:46:44 server.ahmedsuror.com iptables.init[11362]: Error occurred at line: 5
Jun 22 23:46:44 server.ahmedsuror.com iptables.init[11362]: Try `iptables-restore -h' or 'iptables-restore --help' for more information.
Jun 22 23:46:44 server.ahmedsuror.com iptables.init[11362]: [FAILED]
Jun 22 23:46:44 server.ahmedsuror.com systemd[1]: iptables.service: Main process exited, code=exited, status=1/FAILURE
Jun 22 23:46:44 server.ahmedsuror.com systemd[1]: iptables.service: Failed with result 'exit-code'.
Jun 22 23:46:44 server.ahmedsuror.com systemd[1]: Failed to start IPv4 firewall with iptables.
Warning: Journal has been rotated since unit was started. Log output is incomplete or unavailable.
我已经修改了/etc/sysconfig/iptables文件,似乎跌落式链是问题所在,但经过长时间的研究,我发现这个链是由脑脊液。
问题是什么?如果脑脊液和低频频谱分析仪工作正常,我应该打扰吗?
另外,我已经使用 Perl 脚本测试了 iptables,/etc/csf/csftest.pl一切正常:
[root@server csf]# perl csftest.pl
Testing ip_tables/iptable_filter...OK
Testing ipt_LOG...OK
Testing ipt_multiport/xt_multiport...OK
Testing ipt_REJECT...OK
Testing ipt_state/xt_state...OK
Testing ipt_limit/xt_limit...OK
Testing ipt_recent...OK
Testing xt_connlimit...OK
Testing ipt_owner/xt_owner...OK
Testing iptable_nat/ipt_REDIRECT...OK
Testing iptable_nat/ipt_DNAT...OK
结果:csf 应该在此服务器上运行
任何帮助是极大的赞赏...