On Thu, 2005-08-25 at 07:48 -0700, centos at silverservers.com
wrote:> Hello CentOS,
>
> I'm having a strange situation on one of my servers. I'm running
> CentOS with all the latest yum updates. It runs fine, but iptables
> does not seem to be 'consistently' dropping the packets from the
IP's
> I've put a drop rule in for. When I do iptables -L I still see the
> rule in place:
>
> iptables -L
> Chain INPUT (policy ACCEPT)
> target prot opt source destination
> RH-Firewall-1-INPUT all -- anywhere anywhere
> DROP all -- ip176-0.netcathost.com/24 anywhere
>
> With this rule in place and iptables running, I am now getting the
> blocked IP's showing up in my apache logs again. this used to work...
> has something changed?
>
Rather than posting the output of iptables -L, could you send the
file /etc/sysconfig/iptables to the list.
Also, what happens if you restart iptables?
/sbin/service iptables restart
Any errors?
Sean
--
Sean O'Connell
Office of Engineering Computing oconnell at soe.ucsd.edu
Jacobs School of Engineering, UCSD 858.534.9716 (49716)