How to support openvz iptable_nat modules?

D

dns173

Active Member
Dec 12, 2011
65
0
26
my system Proxmox VE 4.3

[root@6test ~]# service iptables restart
iptables: Setting chains to policy ACCEPT: nat filter [ OK ]
iptables: Flushing firewall rules: [ OK ]
iptables: Unloading modules: iptable_nat iptable_filter iptable_nat iptable_filter ip_tables [FAILED]
iptables: Applying firewall rules: [ OK ]

How to support openvz iptable_nat modules? The default is not supported. thanks.
 
Proxmox VE 4.3 has no OpenVZ, so please clarify your request.
 
tom said:
Proxmox VE 4.3 has no OpenVZ, so please clarify your request.
Click to expand...
Because to be applied to the relevant iptable_nat. so What do I need to do.

Tengo una necesidad de configurar la VPN PPTP clase

How can LXC support?
 
Last edited:
I am sorry but you post still quite confusing.

Please explain in detail what you want to do.
 
tom said:
I am sorry but you post still quite confusing.

Please explain in detail what you want to do.
Click to expand...

sorry. my system Proxmox VE 4.3 .
I would like to establish a need to use vpn LXC to iptables_nat But suggested that the system does not support.
I need to do so can allow system support?thanks.

LXC CT system : centos 7
 
Hello - trying to install nagios xi, but the same "failed" error is preventing successful installation on a centos 6.9 lxc:
Code: 
# service iptables restart
iptables: Setting chains to policy ACCEPT: filter          [  OK  ]
iptables: Flushing firewall rules:                         [  OK  ]
iptables: Unloading modules:  iptable_filter iptable_filter[FAILED]es
iptables: Applying firewall rules:                         [  OK  ]

Info:
Code: 
# lsmod |sort |grep ip
ip6table_filter        16384  0
ip6_tables             28672  1 ip6table_filter
ip_set                 45056  0
iptable_filter         16384  1
ip_tables              28672  1 iptable_filter
ipt_REJECT             16384  2
nf_conntrack          106496  2 nf_conntrack_ipv4,xt_state
nf_conntrack_ipv4      16384  4
nf_defrag_ipv4         16384  1 nf_conntrack_ipv4
nfnetlink              16384  3 ip_set,nfnetlink_log
nf_reject_ipv4         16384  1 ipt_REJECT
x_tables               36864  7 ipt_REJECT,xt_tcpudp,xt_state,ip6table_filter,ip6_tables,iptable_filter,ip_tables

# uname -r
4.4.67-1-pve

# rpm -q kernel
kernel-2.6.32-642.11.1.el6.x86_64
kernel-2.6.32-696.6.3.el6.x86_64
 
Containers have no control over kernel modules, so you'll have to modify the service file to not try to unload or load any.
 
  • Like
Reactions: ZellTM84
@wbumiller Thanks, I was able to circumvent the error by changing the following value to "no":
Code: 
# grep IPTABLES_MODULES_UNLOAD /etc/sysconfig/iptables-config
#IPTABLES_MODULES_UNLOAD="yes"
IPTABLES_MODULES_UNLOAD="no
 
You must log in or register to reply here.

About

The Proxmox community has been around for many years and offers help and support for Proxmox VE, Proxmox Backup Server, and Proxmox Mail Gateway.
We think our community is one of the best thanks to people like you!

Quick Navigation

Home Get Subscription Wiki Downloads Proxmox Customer Portal About

Get your subscription!

The Proxmox team works very hard to make sure you are running the best software and getting stable updates and security enhancements, as well as quick enterprise support. Tens of thousands of happy customers have a Proxmox subscription. Get yours easily in our online shop.

Buy now!
Community platform by XenForo® © 2010-2024 XenForo Ltd.
Top Bottom
Back