IP chains + redhat 2.4.9-31smp

Matt_Domsch@Dell.com Matt_Domsch at Dell.com
Mon Apr 22 17:30:00 CDT 2002


> I just put a poweredge 1650 running redhat 2.4.9-31smp onto 
> the net, and 
> already my apache is being hammered by a Code Red worm.
> 
> I have a shell script that greps my httpd error log and adds 
> an ipchains 
> rule to block the offending IP. However I just tested 
> ipchains and get:
> 
> [hortence at sv1 hortence]$ sudo /sbin/ipchains -nL
> ipchains: Incompatible with this kernel
> 
> Before I look too much into this, is there a quick and easy 
> way to get a 
> version of ipchains that works?  rpm -v tells me that I've got 
> ipchains-1.3.10-10

lsmod will probably show that iptables is loaded, not ipchains, and they're
mutually exclusive.  You may wish to upgrade your script to make iptables
rules instead. :-)  iptables can be much more powerful than the older
ipchains from the 2.2.x kernel days.

Thanks,
Matt

--
Matt Domsch
Sr. Software Engineer
Dell Linux Solutions www.dell.com/linux
Linux on Dell mailing lists @ http://lists.us.dell.com
#1 US Linux Server provider for 2001!




More information about the Linux-PowerEdge mailing list