Find the answer to your Linux question:
Results 1 to 2 of 2
Hello, FTP users are getting blocked false by firewall (config server firewall), i need to learn what firewall rule triggering this block, so from /var/log/messsages i see following. I want ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Linux User postcd's Avatar
    Join Date
    Apr 2011
    Posts
    324

    How to read "Firewall: *TCP_IN Blocked*" message?


    Hello,

    FTP users are getting blocked false by firewall (config server firewall), i need to learn what firewall rule triggering this block, so from /var/log/messsages i see following. I want to ask how to read it and get the info on which value tot weak?

    ...
    May 26 03:16:40 host1 kernel: Firewall: *TCP_IN Blocked* IN=venet0 OUT= MAC= SRC=190.140.142.24 DST=107.182.133.29 LEN=52 TOS=0x00 PREC=0x00 TTL=106 ID=9289 DF PROTO=TCP SPT=60500 DPT=1880 WINDOW=65535 RES=0x00 SYN URGP=0
    May 26 01:49:50 host1 kernel: Firewall: *TCP_IN Blocked* IN=venet0 OUT= MAC= SRC=190.140.142.24 DST=107.182.133.29 LEN=52 TOS=0x00 PREC=0x00 TTL=106 ID=8199 DF PROTO=TCP SPT=58858 DPT=17411 WINDOW=65535 RES=0x00 SYN URGP=0
    ...
    "Avoid the Gates of Hell. Use Linux affordable VPS."

  2. #2
    Linux User postcd's Avatar
    Join Date
    Apr 2011
    Posts
    324
    These are the rules that are loaded on iptables start, if it can solve any questions?
    http://pastebin.com/thurz8KZ
    Would be gratefull if anyone can answer this


    I think this iptables rule is related to log entry in first post:
    LOG tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 limit: avg 30/min burst 5 LOG flags 0 level 4 prefix `Firewall: *TCP_IN Blocked* '
    LOG tcp opt -- in * out * 0.0.0.0/0 -> 0.0.0.0/0 tcp flags:0x17/0x02 limit: avg 30/min burst 5 LOG flags 8 level 4 prefix `Firewall: *TCP_OUT Blocked* '
    anyone please know what this rule do?
    Last edited by postcd; 05-27-2014 at 07:56 PM.
    "Avoid the Gates of Hell. Use Linux affordable VPS."

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •