From: Arthur D. <mis...@bl...> - 2014-06-08 18:15:37
|
On Sat, 2014-06-07 at 14:30 +0200, Tom Hendrikx wrote: > > Any ideas? > > > > It seems that f2b failed to setup the iptables chain for the modsec > jail (i.e. the 'actionstart' commands in iptables.conf). The output of > f2b should be visible in your logs at the last (re)start time of f2b. > Restarting f2b to see if it consistently fails creating this chain > could be easy. > > I've seen issues with this is the past too, but I don't know if a real > solution was discovered/implemented. In my observations back then, the > chain creation failed rather randomly. :/ > > Tom Hi Tom, Thanks for the help. I tried to untangle what was in the log file back when I last re-started F2B, but in the end I just gave up and re-started it again. It seems that all the jails have now re-started cleanly and and I am keeping an eye on the log (and iptables) for the next event, to check that it is all working. Fingers crossed! Thanks again - much appreciated. Mark |