[SOLVED] Firewalld problem

Support for security such as Firewalls and securing linux
Post Reply
ru_aliyev
Posts: 4
Joined: 2015/06/05 05:48:55

[SOLVED] Firewalld problem

Post by ru_aliyev » 2015/06/05 06:03:15

Hi all,

I have problem with my firewalld. When i write systemctl status firewalld, in output i receive errors and firewalld is down

firewalld.service - firewalld - dynamic firewall daemon
Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled)
Active: inactive (dead) since Fri 2015-06-05 10:01:08 AZST; 14min ago
Process: 401 ExecStart=/usr/sbin/firewalld --nofork --nopid $FIREWALLD_ARGS (code=exited, status=0/SUCCESS)
Main PID: 401 (code=exited, status=0/SUCCESS)
CGroup: /system.slice/firewalld.service

Jun 05 10:01:07 systemd[1]: Starting firewalld - dynamic firewall daemon...
Jun 05 10:01:08 systemd[1]: Started firewalld - dynamic firewall daemon.
Jun 05 10:01:08 firewalld[401]: 2015-06-05 10:01:08 ERROR: ebtables not usable, disabling ethernet bridge firewall.
Jun 05 10:01:08 firewalld[401]: 2015-06-05 10:01:08 FATAL ERROR: No IPv4 and IPv6 firewall.
Jun 05 10:01:08 firewalld[401]: 2015-06-05 10:01:08 ERROR: Raising SystemExit in run_server

At /var/log directory was created firewalld log file, which contain

2015-06-05 10:01:08 WARNING: iptables not usable, disabling IPv4 firewall.
2015-06-05 10:01:08 WARNING: ip6tables not usable, disabling IPv6 firewall.
2015-06-05 10:01:08 ERROR: ebtables not usable, disabling ethernet bridge firewall.
2015-06-05 10:01:08 FATAL ERROR: No IPv4 and IPv6 firewall.
2015-06-05 10:01:08 ERROR: Raising SystemExit in run_server

My kernel version

#uname -a
Linux 3.10.0-229.1.2.el7.x86_64 #1 SMP Fri Mar 27 03:04:26 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux

firewall version
firewalld-0.3.9-11

Any idea?

Thanks

User avatar
avij
Retired Moderator
Posts: 3046
Joined: 2010/12/01 19:25:52
Location: Helsinki, Finland
Contact:

Re: Firewalld problem

Post by avij » 2015/06/05 07:31:54

Do you have the iptables package installed? rpm -q iptables. If not, yum install iptables.

ru_aliyev
Posts: 4
Joined: 2015/06/05 05:48:55

Re: Firewalld problem

Post by ru_aliyev » 2015/06/05 07:41:40

avij wrote:Do you have the iptables package installed? rpm -q iptables. If not, yum install iptables.

Yes, it's installed by default.

# rpm -q iptables
iptables-1.4.21-13.el7.x86_64

User avatar
avij
Retired Moderator
Posts: 3046
Joined: 2010/12/01 19:25:52
Location: Helsinki, Finland
Contact:

Re: Firewalld problem

Post by avij » 2015/06/05 08:13:25

What happens when you run iptables -L -n ?

ru_aliyev
Posts: 4
Joined: 2015/06/05 05:48:55

Re: Firewalld problem

Post by ru_aliyev » 2015/06/05 09:10:42

avij wrote:What happens when you run iptables -L -n ?

Command returns:

# iptables -L -n
iptables v1.4.21: can't initialize iptables table `filter': Table does not exist (do you need to insmod?)
Perhaps iptables or your kernel needs to be upgraded.


When run system update, system returns to me this -

# yum upgrade
Loaded plugins: fastestmirror
Loading mirror speeds from cached hostfile
* base: mirrors.einstein.yu.edu
* epel: mirror.us.leaseweb.net
* extras: centos.mirror.constant.com
* updates: mirror.ash.fastserv.com
No packages marked for update

User avatar
avij
Retired Moderator
Posts: 3046
Joined: 2010/12/01 19:25:52
Location: Helsinki, Finland
Contact:

Re: Firewalld problem

Post by avij » 2015/06/05 09:26:31

You should not need to do this, but see if modprobe iptable_filter helps.

User avatar
TrevorH
Site Admin
Posts: 33202
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: Firewalld problem

Post by TrevorH » 2015/06/05 09:42:00

Please post the output of uname -a from the machine in question.
The future appears to be RHEL or Debian. I think I'm going Debian.
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 and 6 are deadest, do not use them.
Use the FAQ Luke

User avatar
avij
Retired Moderator
Posts: 3046
Joined: 2010/12/01 19:25:52
Location: Helsinki, Finland
Contact:

Re: Firewalld problem

Post by avij » 2015/06/05 09:44:58

ru_aliyev wrote:#uname -a
Linux 3.10.0-229.1.2.el7.x86_64 #1 SMP Fri Mar 27 03:04:26 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux
The newest kernel is 3.10.0-229.4.2. Seeing that you have run "yum update" and there are no updates available, perhaps you should reboot your server to start using the new version and its kernel modules. With a bit of luck it will help with your problem.

ru_aliyev
Posts: 4
Joined: 2015/06/05 05:48:55

Re: [SOLVED] Firewalld problem

Post by ru_aliyev » 2015/06/05 10:58:31

avij wrote:
ru_aliyev wrote:#uname -a
Linux 3.10.0-229.1.2.el7.x86_64 #1 SMP Fri Mar 27 03:04:26 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux
The newest kernel is 3.10.0-229.4.2. Seeing that you have run "yum update" and there are no updates available, perhaps you should reboot your server to start using the new version and its kernel modules. With a bit of luck it will help with your problem.

You're right! After reboot, kernel version was updated.

Problem with firewall, was resolved too.

Thanks!!!

Post Reply