[BlueOnyx:21463] Re: centos 7.4: iptables & apf not active
Michael Stauber
mstauber at blueonyx.it
Tue Oct 3 10:44:43 -05 2017
Hi Maurice,
> Last week I did the upgrade to centos 7.4
>
> After a successful yum update and a reboot, I noticed that iptables &
> apf where not active anymore. It didn't take that long for unwanted
> connections to get in.
>
> The solution was as described on
>
https://www.eukhost.com/blog/webhosting/apf-unable-to-load-iptables-module-ip_tables/
>
> Apparently, iptables is now a static kernel module.
Thank you for bringing this to my attention. I'll publish an updated APF
later today.
As is the APF package does check if it needs to change the configuration
option for MONOKERN, because on OpenVZ enabled systems we already needed
to set it to "1" in order for APF to work. On "stand alone servers" or
those with other virtualization techniques we could leave it at "0". But
yeah, we now need to check as well if this is is CentOS >= 7.4.
--
With best regards
Michael Stauber
More information about the Blueonyx
mailing list