iptables brute force block on Debian

K

kraspor

New member
Joined
Dec 9, 2013
Messages
3
I have been following the guide here (on my Debian machine ;) ),
http://help.directadmin.com/item.php?id=380

I have got the buttons to show and some IP info is added to iptables once it is pressed but i also get some errors (including when restarting iptables).
Does anyone have clean guide for Debian or are willing to help out, maybe we can set up a guide for Debian afterwards?

This is the error after pressing "add to block list" created by the guide in the link.


Restarting iptables ...
libkmod: ERROR ../libkmod/libkmod.c:505 kmod_lookup_alias_from_builtin_file: could not open builtin file '/lib/modules/2.6.32-042stab076.8/modules.builtin.bin' FATAL: Module ip_tables not found. libkmod: ERROR ../libkmod/libkmod.c:505 kmod_lookup_alias_from_builtin_file: could not open builtin file '/lib/modules/2.6.32-042stab076.8/modules.builtin.bin' FATAL: Module iptable_filter not found. libkmod: ERROR ../libkmod/libkmod.c:505 kmod_lookup_alias_from_builtin_file: could not open builtin file '/lib/modules/2.6.32-042stab076.8/modules.builtin.bin' FATAL: Module ip_conntrack not found. libkmod: ERROR ../libkmod/libkmod.c:505 kmod_lookup_alias_from_builtin_file: could not open builtin file '/lib/modules/2.6.32-042stab076.8/modules.builtin.bin' FATAL: Module ip_conntrack_ftp not found. /etc/init.d/iptables: line 93: /proc/sys/net/ipv4/tcp_timestamps: Permission denied /etc/init.d/iptables: line 105: /proc/sys/net/ipv4/ip_dynaddr: Permission denied /etc/init.d/iptables: line 112: /proc/sys/net/ipv4/ip_local_port_range: Permission denied /etc/init.d/iptables: line 115: /proc/sys/net/ipv4/tcp_fin_timeout: Permission denied /etc/init.d/iptables: line 116: /proc/sys/net/ipv4/tcp_keepalive_time: Permission denied /etc/init.d/iptables: line 117: /proc/sys/net/ipv4/tcp_window_scaling: Permission denied /etc/init.d/iptables: line 118: /proc/sys/net/ipv4/tcp_sack: Permission denied /etc/init.d/iptables: line 119: /proc/sys/net/ipv4/tcp_max_syn_backlog: Permission denied iptables: No chain/target/match by that name. iptables: No chain/target/match by that name.

Thank you
 
Either you are not logged in as root or your vps does not support all the firewall modules it needs to.
 
scsi said:
Either you are not logged in as root or your vps does not support all the firewall modules it needs to.
Click to expand...

Thanks for replying. I am indeed logged in as root. So that leaves the module support. I am not familiar with how to solve this. Is there a module pack that can be installed?
(I have full access to the VPS)

Thanks
 
I would just ask your hosting provider. They should be able to make it work for you.
 
My suggestion and is what most people use is to install CSF Firewall, it integrates with Directadmin and you can manually block if you wish from the CSF panel in DA. Your going to get alot of features from it.

You then integrate the block scripts in DA to autoblock ip's in CSF firewall when Bruteforce detects.

http://configserver.com/cp/csf.html

hope that helps!
 
bluebirdnet said:
My suggestion and is what most people use is to install CSF Firewall, it integrates with Directadmin and you can manually block if you wish from the CSF panel in DA. Your going to get alot of features from it.

You then integrate the block scripts in DA to autoblock ip's in CSF firewall when Bruteforce detects.

http://configserver.com/cp/csf.html

hope that helps!
Click to expand...

Thank you both for your time.
I will have a go with the CSF, although it's a tad overkill for my taste :)
(get back to post info if i have something, good or bad)
 
You must log in or register to reply here.
Back
Top