• Willkommen im Linux Club - dem deutschsprachigen Supportforum für GNU/Linux. Registriere dich kostenlos, um alle Inhalte zu sehen und Fragen zu stellen.

[gelöst] SuSEfirewall2 läuft auf vServer nicht

H

henni

Newbie
Hallo!

Ich habe mir einen vServer mit openSUSE 10.2 "minimal" bei optimate-server.de bestellt.

Aber ich bekomme die SuSEfirewall 2 einfach nicht zu laufen.

Erst habe ich über yast2 versucht, die Firewall zu starten, was aber nicht funktioniert hat.
Dann habe ich noch in yast2 eingestellt, dass er die Firewall automatisch beim Systemstart starten soll und danach habe ich den vServer neugestartet. Das hat aber auch nicht funktioniert, also habe ich
Code: 
SuSEfirewall2 start
eingegeben, aber da kam leider nur eine lange Fehlermeldung:
Code: 
SuSEfirewall2: Warning: ip6tables does not support state matching. Extended IPv6 support disabled.
SuSEfirewall2: Warning: Kernel lacks support for IPv6 REJECT target! Using DROP for IPv6 instead.
SuSEfirewall2: Setting up rules from /etc/sysconfig/SuSEfirewall2 ...
SuSEfirewall2: Warning: no interface active
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
SuSEfirewall2: batch committing...
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables-batch v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
SuSEfirewall2: Error: iptables-batch failed, re-running using iptables
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `nat': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `nat': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `mangle': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `mangle': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory
iptables v1.3.6: can't initialize iptables table `filter': iptables who? (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.
SuSEfirewall2: Firewall rules successfully set

Dann habe ich noch
Code: 
SuSEfirewall2 status
ausprobiert, dort kam folgende Meldung:
Code: 
SuSEfirewall2: Warning: ip6tables does not support state matching. Extended IPv6 support disabled.
SuSEfirewall2: Warning: Kernel lacks support for IPv6 REJECT target! Using DROP for IPv6 instead.
SuSEfirewall2: SuSEfirewall2 not active

Woran kann das liegen, dass die Firewall nicht funktioniert?
Den vServer hab ich erst heute bestellt, also kann es nicht sein, dass ich irgendetwas "verstellt" habe.


MfG!
 
Martin Breidenbach

Martin Breidenbach

Ultimate Guru
henni schrieb:
Woran kann das liegen, dass die Firewall nicht funktioniert?
Zum Vergrößern anklicken....

Code: 
FATAL: Could not load /lib/modules/2.6.16.33-xen/modules.dep: No such file or directory

Ich weiß nicht ob da xen irgendwie dazwischenfunkt... die modules.dep wird mit
Code: 
depmod
erstellt.
 
OP
H

henni

Newbie
Ich habe grad nochmal geguckt, der Ordner
Code: 
/lib/modules/2.6.16.33-xen/
existiert garnicht.

Im Ordner
Code: 
/lib/modules
gibt es nur die beiden Ordner:
Code: 
2.6.16-xen
2.6.18.8-0.1-default


Wenn ich den Befehl
Code: 
depmod
ausführe, bekomme ich nur folgende Fehlermeldung:
Code: 
WARNING: Couldn't open directory /lib/modules/2.6.16.33-xen: No such file or directory
FATAL: Could not open /lib/modules/2.6.16.33-xen/modules.dep.temp for writing: No such file or directory


Oder ist das normal, dass auf einem vServer die Firewall nicht funktioniert?

Ich hab vorhin den Server bekommen, Updates raufgespielt und dann habe ich dass mit der Firewall gemacht. Mehr habe ich davor nicht gemacht, es kann also nicht sein, dass ich irgendetwas verstellt habe.


Die Firewall sollte man doch unbedingt einschalten, oder?
Ist das ein Sicherheitsrisiko, wenn sie nicht eingeschaltet ist?
 
B

b3ll3roph0n

Guru
henni schrieb:
Oder ist das normal, dass auf einem vServer die Firewall nicht funktioniert?
Zum Vergrößern anklicken....
Ja.
Ein VServer hat keinen eigenen Kernel, sondern benutzt den Kernel des Host-Systems.
Ergo: Keine iptables => keine SuSE-Firewall

henni schrieb:
Die Firewall sollte man doch unbedingt einschalten, oder?
Ist das ein Sicherheitsrisiko, wenn sie nicht eingeschaltet ist?
Zum Vergrößern anklicken....
Eine Firewall ist auf einem Server eher weniger wichtig und dient eigentlich nur zur Beruhigung des Admins.
Sicher die jeweiligen Dienste entsprechend ab.
Nichtbenötigte Dienste sollten sowieso abgeschaltet und nicht durch eine FW geblockt werden.


PS: Unerfahrene Admins sind das weitaus größere Sicherheitsrisiko.
 
OP
H

henni

Newbie
Vielen Dank für die Antwort.

(Das System ist sowieso ein "Minimal"-System, die ganzen unnötigen Programme bzw. Dienste sind da garnicht installiert.)
 
Du musst dich einloggen oder registrieren, um hier zu antworten.
Oben