| Flushing iptables does not work. [message #49976] |
Tue, 16 July 2013 07:40  |
tec-hq@FreeBit.NET
Messages: 1
Registered: July 2013
|
Junior Member |
|
|
Hi,
I use OpenVZ with ubuntu12.04 .
I tried to update kernel, but after update iptables -F does not work.
Is this a problem of kernel ?
Step:
1)Do "iptables -F# on container.
2)Container receive PING from another server.
3)Do "iptables -P INPUT DROP" on container.
4)Container doesn't receive PING.
5)Do "iptables -F"
6)Still container doesn't receive PING.
Details:
vzctl-3.0.30.2-1.x86_64
vzctl-lib-3.0.30.2-1.x86_64
vzkernel-2.6.32-042stab078.27.x86_64
Thank you.
|
|
|
|
| Re: Flushing iptables does not work. [message #49985 is a reply to message #49976] |
Wed, 17 July 2013 17:44  |
Paparaciz
Messages: 302
Registered: August 2009
|
Senior Member |
|
|
iptables -F have nothing to do if you change policy rule
with iptables -P INPUT DROP you define that INPUT always have to be droped. than you can just add rules with accept.
if you would add some rules (as example iptables -A INPUT -i venet0 -p icmp -j ACCEPT), than iptables -F will delete this rule.
if you want change policy rule, than you have to explicitly to do so, as example iptables -P INPUT ACCEPT.
|
|
|
|
OpenVZ Forum
Members
Search
Help
Register
Login
Home
