Iptables csf ufw firewalld or vpn software problems

If you are getting issues with iptables or CSF or UFW or firewalld on your openvz/virtuozzo 7 conatiner/vps that looks similar to the following:

Error: iptables: No chain/target/match by that name

Error: iptables v1.4.21: can't initialize iptables table `nat

Please run the following command: touch /option.netfilter

Your VPS will self reboot within 30 minutes and this will give you access to the modules you require, rebooting manually will not speed this up and may cause it to fail.

For VPN related issues please also ensure you have enabled tun/tap from the control panel and rebooted from the control panel (not ssh)

If you see something along the lines of:


iptables v1.8.4 (nf_tables): Could not fetch rule set generation id: Invalid argument

Please run the following:

  • apt install iptables
  • update-alternatives --set iptables /usr/sbin/iptables-legacy
  • update-alternatives --set ip6tables /usr/sbin/ip6tables-legacy

The issue is due to the debian based distro expecting nf_table support in the kernel however the OpenVZ host node kernels are in line with CentOS 7.

 

 

  • 3 Users Found This Useful
Was this answer helpful?

Related Articles

Enable NFS or FUSE or Netfilter for Docker Support

You can enable FUSE or NFS yourself by logging in to your VPS over ssh and running the...

Docker extra options

In many circumstances docker needs to know its running inside a container, you can tell docker...

No network connectivity.

If you have no network connectivity but you have verified your VPS is up and running according to...