OpenVZ Forum


Home » General » Support » [solved] iptables: Unknown error 4294967295
[solved] iptables: Unknown error 4294967295 [message #32494] Tue, 12 August 2008 19:25 Go to next message
gozargah is currently offline  gozargah
Messages: 32
Registered: June 2008
Member
Hello,

We have "iptables: Unknown error 4294967295" error on our vps when try to start installed firewall such as "APF"
How can resolve this issue?

Thanks

[Updated on: Tue, 16 December 2008 15:30] by Moderator

Report message to a moderator

Re: iptables: Unknown error 4294967295 [message #32501 is a reply to message #32494] Tue, 12 August 2008 20:41 Go to previous messageGo to next message
khorenko is currently offline  khorenko
Messages: 533
Registered: January 2006
Location: Moscow, Russia
Senior Member
Hello,

probably this kb article can help you:
http://kb.parallels.com/article_130_875_en.html

http://www.webhostingtalk.com/showthread.php?t=638950

--
Konstantin

If your problem is solved - please, report it!
It's even more important than reporting the problem itself...

[Updated on: Tue, 12 August 2008 20:42]

Report message to a moderator

SOLVED!! iptables: Unknown error 4294967295 [message #34172 is a reply to message #32494] Wed, 10 December 2008 19:09 Go to previous messageGo to next message
hostenlinea is currently offline  hostenlinea
Messages: 15
Registered: August 2008
Junior Member
Hi,
Few days ago i had the same problem and i solved it.

You first, make sure that you have the right iptables value in hardware node config, as describes in this post:
http://kb.parallels.com/article_130_875_en.html

The problem is now, the --numiptent variable. You should increase to 1000. I try with less values, such as 300-500 and still with errors.
Then making:
vzctl set VE_ID --numiptent 1000 --save

The problem is absolutely solved. Apf now starts right.

I hope this help Smile

Regards,
Victor Amil

[Updated on: Wed, 10 December 2008 19:09]

Report message to a moderator

Re: SOLVED!! iptables: Unknown error 4294967295 [message #34246 is a reply to message #34172] Tue, 16 December 2008 15:29 Go to previous messageGo to next message
khorenko is currently offline  khorenko
Messages: 533
Registered: January 2006
Location: Moscow, Russia
Senior Member
Hi.

Victor, thank you for the update with the increased numiptent ubc value.
i've checked current APF version available (apf-9.6-5). With no additional configuration, just after simple start APF uses 329 ipt entries in my Container and if i set numiptent ubc parameter to 400 APF starts fine and no new failcounters appear.

But in any case 200 (as written in kb) is definitely not enough, we'll update the kb.

Thanks again!

--
Konstantin

If your problem is solved - please, report it!
It's even more important than reporting the problem itself...

Report message to a moderator

Re: [solved] iptables: Unknown error 4294967295 [message #42380 is a reply to message #32494] Fri, 08 April 2011 18:53 Go to previous messageGo to next message
dedicados is currently offline  dedicados
Messages: 46
Registered: February 2009
Location: Mexico
Member
i have same problem and i increase it to 400 and restarted apf but still getting

iptables: Unknown error 4294967295
iptables: Unknown error 4294967295
apf(21992): {glob} default (egress) output accept
apf(21992): {glob} default (ingress) input drop
iptables: Unknown error 4294967295
iptables: Unknown error 4294967295
iptables: Unknown error 4294967295
apf(21951): {glob} firewall initalized
apf(21951): {glob} fast load snapshot saved
root@xela [/]#

when i do a restart of the firewall.

Report message to a moderator

Re: SOLVED!! iptables: Unknown error 4294967295 [message #42398 is a reply to message #34246] Wed, 13 April 2011 00:12 Go to previous message
Garfed is currently offline  Garfed
Messages: 1
Registered: April 2011
Location: New York
Junior Member
I checked the version of the current APF (APF-9.6-5). No additional configuration, just after the start of a simple container with 329 armed police in my work IP phones, if the parameter is set numiptent UBC 400 APF I started fine, no new failcounters appear...

Report message to a moderator

Previous Topic: creating RHEL 6 container, only 1 process (init) starts
Next Topic: Unable to add netdev for network device with subinterface
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Sun Nov 10 19:41:17 GMT 2024

Total time taken to generate the page: 0.03698 seconds
Powered by FUDforum Powered by Virtuozzo Containers