My CSF firewall says "xt_connlimit...FAILED" - please add xt_connlimit module.
Actually there is connlimit module and it is enabled. However the kernel implementation for connlimit has changed through the years. Distributions which by default run on 2.6.32 kernel (i.e. Debian 6 or CentOS 6) are incompatible with the xconnlimit implementation in the 2.6.18 OpenVZ kernel, which we use for it's stability.
A workaround would be to use CentOS 5 - CSF reports no problem with using the connlimit feature with CentOS 5.
If you want to use debian 6 64bit, you can do the following:
apt-get -y remove iptables
dpkg -i ./iptables_184.108.40.206debian1-5_amd64.deb
After that CSF should no longer report erros. Whether it really works - you have to test :)
Was this answer helpful?
KISS My Firewall is a FREE iptables script developed by Steve Eschweiler and is released into the...
Sorry, we no longer offer this. SEO is dead, please work on improving your content instead.
For VPS - service transfers are not allowed.For dedicated servers service transfers are allowed...
The URL for the SolusVM control panel is: http://solusvm.fitvps.com/ or for encrypted connection:...
Access to sit device can be provided upon request, please open a support ticket and ask for it....