Link to home
Start Free TrialLog in
Avatar of VirtueTech
VirtueTech

asked on

RedHat ES: PortFlush cron error - iptables: No chain/target/match by that name

I keep getting this in my email box from my server:

/etc/cron.hourly/portflush:

iptables: No chain/target/match by that name


How do I get rid of this error. It gets sent to me on an hourly basis.

Thanks.
SOLUTION
Avatar of jlevie
jlevie

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of VirtueTech
VirtueTech

ASKER

The following is the shell script in /etc/cron.hourly/portflush:


source /etc/sysconfig/portsentry

# This will flush the PORTSEN rules from your firewall tool (ipchains or
# iptables) every hour if CLEAR_CHAIN is set to "1" in the
# /etc/sysconfig/portsentry file
if [ "$CLEAR_CHAIN" = "1" ]
then
        $IPTOOL -F $PORTSENTRY_CHAIN
        rm -f /var/log/portsentry/*blocked*
fi

exit
NOTE: I changed CLEAR_CHAIN from 1 to 0 to stop the emails.

However I would like to fix the error instead of hiding it. Any more ideas?
ASKER CERTIFIED SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Did it split points right
Hello.. There..

Previously, i was getting the error :"Unable to load iptables module (ip_tables), aborting."
while restarting the APF firewall.
Then, on some forum, i found that, a post which asked to try out making a change in the conf.apf.
"change MONOKERN="0" Set it to "1" and then try start APF again."
I did the same, and then, while restarting the APF, i got following error :
 "iptables: No chain/target/match by that name"
please help me, out to solve the error.
Here is the some of the details of my server :
Kernel: Linux <SERVER_HOSTNAME_HERE> 2.4.27-grsec #1 SMP Mon Sep 6 07:48:11 EDT 2004 i686 i686 i386 GNU/Linux
Also, i do not have portsentry on my server.
lastely, earlier, i was not experiencing any APF error.. but, for some days, the server was being handled by another person, who i think, might have upgraded/downgraded the kernel version... could this cause any compatibility issues...

Thank you, in advance..
waiting for reply.


Hello..
An update :
i have tried loading the iptables_module using the command :
modprobe ip_tables,
but got the error :
"modprobe: Can't locate module ip_tables"

Just wonder, if there is another method of loading the ip_tables module..