We are happy to announce that Vesta is back under active development as of 25 February 2024. We are working on v1 candidate and expect to engage more with the community over the coming months. We are committed to open source, and we encourage contributors to help us build the future of Vesta.
How to know if iptables is running?
Re: How to know if iptables is running?
iptables not a standrt linux servce and hard to say, how much time it's works.
There is no solution yet.
There is no solution yet.
Re: How to know if iptables is running?
check iptables is on root
if chains appear its on.
Code: Select all
iptables -L -n
Re: How to know if iptables is running?
Same problem here, I'm not sure if it's working or not.
Vesta shows:
iptables
firewall
CPU: 0Memory: 0 mb
Uptime: 0 minutes
Vesta shows:
iptables
firewall
CPU: 0Memory: 0 mb
Uptime: 0 minutes
Code: Select all
-$ sudo iptables -S
-P INPUT ACCEPT
-P FORWARD ACCEPT
-P OUTPUT ACCEPT
-N fail2ban-ssh
-A fail2ban-ssh -j RETURN
-A fail2ban-ssh -j RETURN
~$ sudo iptables -S
-P INPUT DROP
-P FORWARD ACCEPT
-P OUTPUT ACCEPT
-N fail2ban-SSH
-N fail2ban-VESTA
-N fail2ban-ssh
-N vesta
-A INPUT -p tcp -m tcp --dport 8083 -j fail2ban-VESTA
-A INPUT -p tcp -m tcp --dport 22 -j fail2ban-SSH
-A INPUT -p tcp -m tcp --dport 22 -j ACCEPT
-A INPUT -p tcp -m multiport --dports 80,443 -j ACCEPT
-A INPUT -p tcp -m multiport --dports 21,12000:12100 -j ACCEPT
-A INPUT -p udp -m udp --dport 53 -j ACCEPT
-A INPUT -p tcp -m multiport --dports 25,465,587,2525 -j ACCEPT
-A INPUT -p tcp -m multiport --dports 110,995 -j ACCEPT
-A INPUT -p tcp -m multiport --dports 143,993 -j ACCEPT
-A INPUT -p tcp -m multiport --dports 3306,5432 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 8083 -j ACCEPT
-A INPUT -p icmp -j ACCEPT
-A INPUT -s IP*** -j ACCEPT
-A INPUT -s IP*** -j ACCEPT
-A INPUT -s 127.0.0.1/32 -j ACCEPT
-A INPUT -p tcp -m tcp --sport 20 -j ACCEPT
-A INPUT -p tcp -m tcp --sport 21 -j ACCEPT
-A INPUT -p tcp -m tcp --sport 22 -j ACCEPT
-A INPUT -p tcp -m tcp --sport 25 -j ACCEPT
-A INPUT -p udp -m udp --sport 53 -j ACCEPT
-A INPUT -p tcp -m tcp --sport 80 -j ACCEPT
-A INPUT -p tcp -m tcp --sport 443 -j ACCEPT
-A INPUT -p tcp -m tcp --sport 110 -j ACCEPT
-A INPUT -p udp -m udp --sport 123 -j ACCEPT
-A INPUT -p tcp -m tcp --sport 143 -j ACCEPT
-A INPUT -p tcp -m tcp --sport 3306 -j ACCEPT
-A INPUT -p tcp -m tcp --sport 5432 -j ACCEPT
-A INPUT -p tcp -m tcp --sport 8080 -j ACCEPT
-A INPUT -p tcp -m tcp --sport 8433 -j ACCEPT
-A INPUT -p tcp -m tcp --sport 8083 -j ACCEPT
-A INPUT -p tcp -m tcp --sport 12000:12100 -j ACCEPT
-A INPUT -p tcp -m state --state RELATED,ESTABLISHED -j ACCEPT
-A fail2ban-SSH -j RETURN
-A fail2ban-VESTA -j RETURN
-A fail2ban-ssh -j RETURN
-A fail2ban-ssh -j RETURN
Code: Select all
~$ service iptables start
iptables: unrecognized service
Code: Select all
~$ sudo ufw status
Status: inactive
Re: How to know if iptables is running?
drabello wrote:Same problem here, I'm not sure if it's working or not.
Code: Select all
v-restart-service iptables
Re: How to know if iptables is running?
iptables it's not linux service, so we can't say how much hours it worked.edica wrote:I do not understand.
In Control Panel Vesta, iptables is always: Uptime: 0 minutes.
Re: How to know if iptables is running?
Sry, I did not understand, is it running or not?Code: Select all
v-restart-service iptables
Code: Select all
v-restart-service iptables
Re: How to know if iptables is running?
In centos you can install iptables-services package and then you can use service iptables status and service iptables restart / stop / start etc
Re: How to know if iptables is running?
How about in Ubuntu?skamasle wrote:In centos you can install iptables-services package and then you can use service iptables status and service iptables restart / stop / start etc
Re: How to know if iptables is running?
Please read comments for /etc/init.d/iptables-persistent script
http://serverfault.com/questions/129086 ... -on-ubuntu
http://serverfault.com/questions/129086 ... -on-ubuntu
Re: How to know if iptables is running?
Hi,
I am running on:
Centos 7
vestacp 0.9.8-17
I also have 0mb and uptime: 0 minutes for the iptables.
I put service iptables status
Here is the result
Im not sure if this tells active. But once I stooped the service in the interface, I still see same result when I hit service iptables status command.
When I restart it, I still see 0mb and 0 minutes.
And status still shows the same result. the time did not even change.
Questions:
Is iptables really running?
Is 0mb and 0 min on the interface normal?
Thanks
I am running on:
Centos 7
vestacp 0.9.8-17
I also have 0mb and uptime: 0 minutes for the iptables.
I put service iptables status
Here is the result
Code: Select all
[root@domain~]# service iptables status
Redirecting to /bin/systemctl status iptables.service
● iptables.service - IPv4 firewall with iptables
Loaded: loaded (/usr/lib/systemd/system/iptables.service; enabled; vendor pre set: disabled)
Active: active (exited) since Fri 2017-10-13 00:08:36 +08; 17h ago
Main PID: 445 (code=exited, status=0/SUCCESS)
CGroup: /system.slice/iptables.service
Oct 13 00:08:35 domain.com systemd[1]: Starting IPv4 firewall with iptabl....
Oct 13 00:08:36 domain.com iptables.init[445]: iptables: Applying firewall...
Oct 13 00:08:36 domain.com systemd[1]: Started IPv4 firewall with iptables.
When I restart it, I still see 0mb and 0 minutes.
And status still shows the same result. the time did not even change.
Questions:
Is iptables really running?
Is 0mb and 0 min on the interface normal?
Thanks