Knowledgebase

  1. Portal Home
  2. Knowledgebase
  3. FAQ
  4. CSF xt_connlimit...FAILED

CSF xt_connlimit...FAILED

My CSF firewall says "xt_connlimit...FAILED" - please add xt_connlimit module.

Actually there is connlimit module and it is enabled. However the kernel implementation for connlimit has changed through the years. Distributions which by default run on 2.6.32 kernel (i.e. Debian 6 or CentOS 6) are incompatible with the xconnlimit implementation in the 2.6.18 OpenVZ kernel, which we use for it's stability.

A workaround would be to use CentOS 5 - CSF reports no problem with using the connlimit feature with CentOS 5.

If you want to use debian 6 64bit, you can do the following:


apt-get -y remove iptables
wget http://archive.debian.org/debian/pool/main/i/iptables/iptables_1.3.6.0debian1-5_amd64.deb
dpkg -i ./iptables_1.3.6.0debian1-5_amd64.deb


After that CSF should no longer report erros. Whether it really works - you have to test :)

 

Was this answer helpful?

 Print this Article

Also Read

sit device

Access to sit device can be provided upon request, please open a support ticket and ask for it....

What's my root password?

We don't know what's your root passwod. it's whatever you entered during the installation....

Automatic Provisioning

There is NO automatic or instant provisioning. All orders are manually verified and manually...

Cancellation

If you wish to cancel your service, please go to the product details, scroll down to the bottom...

PPTP/PPP

We don't support PPTP/PPP on our OpenVZ VPS line. If you want to make a VPN on an OpenVZ based...