Facebook
Twitter
J
JasonJ
Guest
I have installed the firewall on Plesk 8.6 (CentOS VPS, 34SP hosting) and it will not activate.
On its default settings, activation results in the following error message:
Error: Could not activate firewall configuration:
safeact: safeact: /usr/local/psa/var/modules/firewall/firewall-new.sh failed:
iptables: No chain/target/match by that name
It also gives this message, but I don't this one is the main problem:
proc_close() failed: mktime() [<a href='function.mktime'>function.mktime</a>]: It is not safe to rely on the system's timezone settings. Please use the date.timezone setting, the TZ environment variable or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected 'Europe/London' for 'BST/1.0/DST' instead
If I run the activation script directly, it gets part way through, issues the same "iptables: No chain/target/match by that name" error, then locks all network traffic on the server. A reboot is the only way to get the server back online.
Other information: lsmod gives me nothing - no modules shown at all. I don't know what that means.
The following line from the activation script gives me the same error message:
[root@www log]# /sbin/iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables: No chain/target/match by that name
My guess is something to do with the 'state' module, perhaps because it is built into the kernel and is not a module? Don't know - I'm mostly guessing there.
Any ideas what I need to do to fix this problem? I have seen firewall activation errors raised going back nine months, with no fixes in sight, so I don't hold up much hope, but I am keeping my fingers crossed.
Any clues?
-- Jason
On its default settings, activation results in the following error message:
Error: Could not activate firewall configuration:
safeact: safeact: /usr/local/psa/var/modules/firewall/firewall-new.sh failed:
iptables: No chain/target/match by that name
It also gives this message, but I don't this one is the main problem:
proc_close() failed: mktime() [<a href='function.mktime'>function.mktime</a>]: It is not safe to rely on the system's timezone settings. Please use the date.timezone setting, the TZ environment variable or the date_default_timezone_set() function. In case you used any of those methods and you are still getting this warning, you most likely misspelled the timezone identifier. We selected 'Europe/London' for 'BST/1.0/DST' instead
If I run the activation script directly, it gets part way through, issues the same "iptables: No chain/target/match by that name" error, then locks all network traffic on the server. A reboot is the only way to get the server back online.
Other information: lsmod gives me nothing - no modules shown at all. I don't know what that means.
The following line from the activation script gives me the same error message:
[root@www log]# /sbin/iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables: No chain/target/match by that name
My guess is something to do with the 'state' module, perhaps because it is built into the kernel and is not a module? Don't know - I'm mostly guessing there.
Any ideas what I need to do to fix this problem? I have seen firewall activation errors raised going back nine months, with no fixes in sight, so I don't hold up much hope, but I am keeping my fingers crossed.
Any clues?
-- Jason
