Hi
I try to understand whicth kernel modules fail2ban requires.
On a Centos 7 machine kernel 2.6.32-042 is installed. But when I install
fail2ban kernel
3.10.0-229xx is installed as a dependency. And now I get some error messages
complaining required uninstalled kernel modules like the following
ERROR ipset create fail2ban-sshd hash:ip timeout 600
firewall-cmd --direct --add-rule ipv4 filter INPUT 0 -p tcp -m multiport
--dports 2021 -m set --match-set fail2ban-sshd src -j REJECT --reject-with
icmp-port-unreach
able -- stdout: "\x1b[91mError: COMMAND_FAILED: '/sbin/iptables -t filter -I
INPUT_direct 1 -p tcp -m multiport --dports 2021 -m set --match-set
fail2ban-sshd src -j
REJECT --reject-with icmp-port-unreachable' failed: iptables v1.4.21: Kernel
module xt_set is not loaded in.\x1b[00m\nFailed to apply rules. A firewall
reload might
solve the issue if the firewall has been modified using ip*tables or
ebtables.\n
I guess the problem is: required kernel module xt_set is not loaded/installed
for some kernel (2.6.32 or 3.10.0). Is that correct? How can I solve this
dependency?
------------------------------------------------------------------------------
_______________________________________________
Fail2ban-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/fail2ban-users
