OpenVZ Forum


Home » General » Support » Iptables
Iptables [message #27277] Wed, 13 February 2008 15:56 Go to next message
ittec is currently offline  ittec
Messages: 41
Registered: February 2008
Member
Hi again

excuse me by a second support request in 1 day :/ I spoke in my first post about one powerful server running with openvz. One of VE had a bad performance so i examined system logs and i saw a lot of rows like these:

TCP: Treason uncloaked! Peer 200.47.151.107:54451/80 shrinks window 2485826383:2485826384. Repaired.
TCP: Treason uncloaked! Peer 200.47.151.107:5567/80 shrinks window 2499005088:2499005089. Repaired.


I read a lot of this problem. I have modified sysctl.conf to make server more strong but i found interesting info about make and sh to avoid ips from "bogon" nets. So one of the steps is examine the current rules with iptables command:

#iptables -L


But the Output is:

Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination


So Are there any rules in Iptables on HN? Shocked Im confusing.

Thanks.

Report message to a moderator

Re: Iptables [message #27297 is a reply to message #27277] Thu, 14 February 2008 08:15 Go to previous message
den is currently offline  den
Messages: 494
Registered: December 2005
Senior Member
iptable rules are supported in VE0 as on the usual Linux host without any limitations. So, you just need to load proper modules and setup them as desired.

Regards,
Den

Report message to a moderator

Previous Topic: Convert existing servers to virtual?
Next Topic: Kernel build help
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Thu Feb 05 21:35:54 GMT 2026

Total time taken to generate the page: 0.59070 seconds
Powered by FUDforum Powered by Virtuozzo Containers