sshguard-users Mailing List for SSHGuard (Page 16)

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

On Mon, 8 Jan 2018 12:43:49 +0800
Kevin Zheng <kev...@gm...> wrote:

> On 01/08/2018 11:47, li...@la... wrote:
> > From centos 7 boot in the messages log. Is this a problem?
> > 
> > Jan  7 05:11:48  systemd: Starting LSB: Bring up/down networking...
> > Jan  7 05:11:48  systemd: Starting SSHGuard - blocks brute-force
> > login attempts... Jan  7 05:11:48  iptables: Another app is
> > currently holding the xtables lock. Perhaps you want to use the -w
> > option? Jan  7 05:11:48  systemd: Started SSHGuard - blocks
> > brute-force login attempts.  
> 
> Perhaps. I remember something similar being reported before.
> 
> What version of SSHGuard, Linux kernel, distribution, and iptables are
> you using?
> 

I'm running firewalld. I'm very much a novice on firewalld, but I
understand it can be augnmented with iptables, but it isn't a
requirement.

Centos
uname -a
Linux  3.10.0-693.11.1.el7.x86_64 #1 SMP Mon Dec 4
23:52:40 UTC 2017 x86_64 x86_64 x86_64 GNU/Linux

firewall-cmd --version
0.4.4.4

sh-4.2# systemctl status iptables
Unit iptables.service could not be found.

sh-4.2# systemctl status firewalld
● firewalld.service - firewalld - dynamic firewall daemon
   Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; vendor preset: enabled)
   Active: active (running) since Sun 2018-01-07 05:11:48 UTC; 1 day 1h ago
     Docs: man:firewalld(1)
 Main PID: 585 (firewalld)
   CGroup: /system.slice/firewalld.service                                                                                                                                         
           └─585 /usr/bin/python -Es /usr/sbin/firewalld --nofork --nopid                                                                                                          

Jan 07 05:12:14  firewalld[585]: WARNING: reject-route: INVALID_ICMPTYPE: No supported ICMP type., ignoring for run-time.                                                          
Jan 07 05:12:20  firewalld[585]: WARNING: ALREADY_ENABLED: rule family=ipv6 source ipset=sshguard6 drop                                                                            
Jan 07 05:12:21  firewalld[585]: ERROR: NAME_CONFLICT: new_ipset(): 'sshguard4'                                                                                                    
Jan 07 05:12:22  firewalld[585]: WARNING: ALREADY_ENABLED: rule family=ipv4 source ipset=sshguard4 drop                                                                            
Jan 07 05:12:48  firewalld[585]: WARNING: ICMP type 'beyond-scope' is not supported by the kernel for ipv6.                                                                        
Jan 07 05:12:48  firewalld[585]: WARNING: beyond-scope: INVALID_ICMPTYPE: No supported ICMP type., ignoring for run-time.                                                          
Jan 07 05:12:48  firewalld[585]: WARNING: ICMP type 'failed-policy' is not supported by the kernel for ipv6.                                                                       
Jan 07 05:12:48  firewalld[585]: WARNING: failed-policy: INVALID_ICMPTYPE: No supported ICMP type., ignoring for run-time.                                                         
Jan 07 05:12:48  firewalld[585]: WARNING: ICMP type 'reject-route' is not supported by the kernel for ipv6.                                                                        
Jan 07 05:12:48  firewalld[585]: WARNING: reject-route: INVALID_ICMPTYPE: No supported ICMP type., ignoring for run-time.

2007	Jan	Feb	Mar (10)	Apr (7)	May (6)	Jun (13)	Jul (4)	Aug	Sep	Oct (17)	Nov (5)	Dec (4)
2008	Jan (2)	Feb	Mar	Apr (4)	May (2)	Jun (7)	Jul (10)	Aug (4)	Sep (14)	Oct	Nov (1)	Dec (7)
2009	Jan (17)	Feb (20)	Mar (11)	Apr (14)	May (8)	Jun (3)	Jul (22)	Aug (9)	Sep (8)	Oct (6)	Nov (4)	Dec (8)
2010	Jan (17)	Feb (9)	Mar (15)	Apr (24)	May (14)	Jun (1)	Jul (21)	Aug (6)	Sep (2)	Oct (2)	Nov (6)	Dec (9)
2011	Jan (11)	Feb (1)	Mar (3)	Apr (4)	May	Jun	Jul (2)	Aug (3)	Sep (2)	Oct (29)	Nov (1)	Dec (1)
2012	Jan (1)	Feb (1)	Mar	Apr (13)	May (4)	Jun (9)	Jul (2)	Aug (2)	Sep (1)	Oct (2)	Nov (11)	Dec (4)
2013	Jan (2)	Feb (2)	Mar (4)	Apr (13)	May (4)	Jun	Jul	Aug (1)	Sep (5)	Oct (3)	Nov (1)	Dec (3)
2014	Jan	Feb (3)	Mar (3)	Apr (6)	May (8)	Jun	Jul	Aug (1)	Sep (1)	Oct (3)	Nov (14)	Dec (8)
2015	Jan (16)	Feb (30)	Mar (20)	Apr (5)	May (33)	Jun (11)	Jul (15)	Aug (91)	Sep (23)	Oct (10)	Nov (7)	Dec (9)
2016	Jan (22)	Feb (8)	Mar (6)	Apr (23)	May (38)	Jun (29)	Jul (43)	Aug (43)	Sep (18)	Oct (8)	Nov (2)	Dec (25)
2017	Jan (38)	Feb (3)	Mar (1)	Apr	May (18)	Jun (2)	Jul (16)	Aug (2)	Sep	Oct (1)	Nov (4)	Dec (14)
2018	Jan (15)	Feb (2)	Mar (3)	Apr (5)	May (8)	Jun (12)	Jul (19)	Aug (16)	Sep (8)	Oct (13)	Nov (15)	Dec (10)
2019	Jan (9)	Feb (3)	Mar	Apr (2)	May	Jun (1)	Jul	Aug (5)	Sep (5)	Oct (12)	Nov (4)	Dec
2020	Jan (2)	Feb (6)	Mar	Apr	May (11)	Jun (1)	Jul (3)	Aug (22)	Sep (8)	Oct	Nov (2)	Dec
2021	Jan (7)	Feb	Mar (19)	Apr	May (10)	Jun (5)	Jul (7)	Aug (3)	Sep (1)	Oct	Nov (10)	Dec (4)
2022	Jan (17)	Feb	Mar (7)	Apr (3)	May	Jun (1)	Jul (3)	Aug	Sep	Oct (6)	Nov	Dec
2023	Jan	Feb (5)	Mar (1)	Apr (3)	May	Jun (3)	Jul (2)	Aug	Sep	Oct	Nov (6)	Dec
2024	Jan	Feb	Mar	Apr	May (3)	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2025	Jan	Feb	Mar (15)	Apr (8)	May (10)	Jun	Jul	Aug	Sep	Oct	Nov	Dec

sshguard-users Mailing List for SSHGuard (Page 16)

Intelligently block brute-force attacks by aggregating system logs

sshguard-users — User questions and answers, bugs, and general support