[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-users] PortSentry not interacting with Ipchains. Help.

Subject: RE: [cobalt-users] PortSentry not interacting with Ipchains. Help.
From: "Andy Brown" <andy.brown@xxxxxxxxxxxxx>
Date: Mon May 20 18:27:01 2002
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

<snip>
[root admin]# /sbin/ipchains -I PSDROP -s 200.161.146.243 -j DROP && 
/sbin/ipchains -I PSDROP -d 200.161.146.243 -j DROP
ipchains: No target by that name

This is happening every time PortSentry tries to block someone. So 
something is wrong and IPchains isn't blocking all the IPs that it should 
be. Any suggestions?
</snip>


In your portsentry.conf file (Probably in /etc/portsentry/) just change the PSDROP to INPUT and it should work fine.

Sounds like your default ipchains rules didn't define the PSDROP chains, so it can't add stuff to them. We just add to the input chain and it works fine.

Regards,
Andy
andy@xxxxxxxxxxxxxxxxxxxxx

http://www.raqpak.com/  <-- Unofficial PKGs, Support, FAQs for RaQ and Qube products

Prev by Date: Re: [cobalt-users] Send email from web page
Next by Date: [cobalt-users] Re: Send email from web page
Previous by thread: [cobalt-users] PortSentry not interacting with Ipchains. Help.
Next by thread: [cobalt-users] MRTG on Raq4

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index