ISPsystem.com Forums

ISPsystem.com Forums (http://forum.ispsystem.com//index.php)
-   General discussion (http://forum.ispsystem.com//forumdisplay.php?f=33)
-   -   VMmanager bad_firewall (http://forum.ispsystem.com//showthread.php?t=3116)

oxfordhosting 09-14-2018 01:42 AM

VMmanager bad_firewall
 
I've got a Centos 7 server which I've installed ISPManager on. That is fully functioning.

I've since attempted to add VMManager to the same server, but when I try to set up the cluster node, I get the error, "bad_firewall".

Below is the output of the log.



Sep 13 19:03:00 [1839:277] libmgr ^[[1;32mINFO id=8d10a8 Ssh command finished with status 0^[[0m
Sep 13 19:03:00 [1839:284] core_module ^[[1;32mINFO Request [IP HIDDEN][root#admin] 'elid=notime%5Fform1536878838353&func=progress.get &operafake=1536879781347&sfrom=ajax'^[[0m
Sep 13 19:03:00 [1839:277] libmgr ^[[1;32mINFO id=29fd9b Run ssh command 'test -e /etc/vmhost-uid' on root@IP HIDDEN^[[0m
Sep 13 19:03:00 [1839:277] libmgr ^[[1;32mINFO id=29fd9b Ssh command finished with status 0^[[0m
Sep 13 19:03:01 [1839:277] libmgr ^[[1;32mINFO id=799ba7 Run ssh command 'cat /etc/vmhost-uid' on root@IP HIDDEN^[[0m
Sep 13 19:03:01 [1839:285] core_module ^[[1;32mINFO Request [mgrctl][root] 'func=periodic&out=text&period=1'^[[0m
Sep 13 19:03:01 [1839:286] core_module ^[[1;32mINFO Request [mgrctl][root] 'func=periodic&out=text&period=60'^[[0m
Sep 13 19:03:01 [1839:277] libmgr ^[[1;32mINFO id=799ba7 Ssh command finished with status 0^[[0m
Sep 13 19:03:01 [1839:277] libmgr ^[[1;32mINFO id=843a33 Run ssh command 'mkdir -p /etc/libvirt/hooks' on root@IP HIDDEN^[[0m
Sep 13 19:03:01 [1839:277] libmgr ^[[1;32mINFO id=843a33 Ssh command finished with status 0^[[0m
Sep 13 19:03:01 [1839:277] libmgr ^[[1;32mINFO id=30504f Run ssh command 'cat > /etc/libvirt/hooks/libvirt-common.sh' on root@IP HIDDEN^[[0m
Sep 13 19:03:01 [1839:277] libmgr ^[[1;32mINFO id=30504f Ssh command finished with status 0^[[0m
Sep 13 19:03:01 [1839:277] libmgr ^[[1;32mINFO id=9b45cb Run ssh command 'cat > /etc/libvirt/hooks/libvirt-bridge.sh' on root@IP HIDDEN^[[0m
Sep 13 19:03:01 [1839:277] libmgr ^[[1;32mINFO id=9b45cb Ssh command finished with status 0^[[0m
Sep 13 19:03:01 [1839:277] libmgr ^[[1;32mINFO id=0a8f23 Run ssh command 'cat > /etc/libvirt/hooks/firewall.sh' on root@IP HIDDEN^[[0m
Sep 13 19:03:01 [1839:277] libmgr ^[[1;32mINFO id=0a8f23 Ssh command finished with status 0^[[0m
Sep 13 19:03:01 [1839:287] core_module ^[[1;32mINFO Request [IP HIDDEN][root#admin] 'elid=notime%5Fform1536878838353&func=progress.get &operafake=1536879782390&sfrom=ajax'^[[0m
Sep 13 19:03:01 [1839:277] libmgr ^[[1;32mINFO id=58206a Run ssh command 'cat > /etc/libvirt/hooks/daemon' on root@IP HIDDEN^[[0m
Sep 13 19:03:01 [1839:277] libmgr ^[[1;32mINFO id=58206a Ssh command finished with status 0^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=c54a4c Run ssh command 'chmod +x /etc/libvirt/hooks/daemon' on root@IP HIDDEN^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=c54a4c Ssh command finished with status 0^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=f60ca1 Run ssh command 'chmod +x /etc/libvirt/hooks/firewall.sh' on root@IP HIDDEN^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=f60ca1 Ssh command finished with status 0^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=cc6017 Run ssh command 'mkdir -p /etc/vmmgr/iptables.rules.d' on root@IP HIDDEN^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=cc6017 Ssh command finished with status 0^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=4ccc6f Run ssh command 'mkdir -p /etc/vmmgr/ip6tables.rules.d' on root@IP HIDDEN^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=4ccc6f Ssh command finished with status 0^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=6c364b Run ssh command 'rm -rf /etc/vmmgr/iptables.rules.d/*' on root@IP HIDDEN^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=6c364b Ssh command finished with status 0^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=ad3944 Run ssh command 'rm -rf /etc/vmmgr/ip6tables.rules.d/*' on root@IP HIDDEN^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=ad3944 Ssh command finished with status 0^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=e12448 Run ssh command 'cat > /etc/libvirt/hooks/firewall.sh' on root@IP HIDDEN^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=e12448 Ssh command finished with status 0^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=727670 Run ssh command 'chmod +x /etc/libvirt/hooks/firewall.sh' on root@IP HIDDEN^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=727670 Ssh command finished with status 0^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=39b013 Run ssh command '/etc/libvirt/hooks/firewall.sh' on root@IP HIDDEN^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=39b013 Ssh command finished with status 1^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;31mERROR Error: Type: 'bad_firewall'^[[0m
Sep 13 19:03:02 [1839:277] libmgr ^[[1;32mINFO id=06b4e8 Ssh command finished with status 0^[[0m
Sep 13 19:03:02 [1839:277] core ^[[1;35mWARNING 0x7f5084002860 Restart request^[[0m
Sep 13 19:03:02 [1839:288] core_module ^[[1;32mINFO Request [IP HIDDEN][root#admin] 'addlocal=on&clicked_button=ok&configuration=&func =vmhostnode.edit&has_pwd=off&ip=&localip=IP HIDDEN&maxvmcount=$
Sep 13 19:03:02 [1839:289] core_module ^[[1;32mINFO Request [IP HIDDEN][root#admin] 'elid=notime%5Fform1536878838353&func=progress.get &operafake=1536879783454&sfrom=ajax'^[[0m


Any ideas?

ksenya 09-14-2018 09:06 AM

Hello

Could you please show us the output of etc/libvirt/hooks/firewall.sh
Make sure that SELinux and FirewallD are disabled on the server. Our control panels work with pure iptables.

oxfordhosting 09-14-2018 08:02 PM

Quote:

Originally Posted by ksenya (Post 9006)
Hello

Could you please show us the output of etc/libvirt/hooks/firewall.sh
Make sure that SELinux and FirewallD are disabled on the server. Our control panels work with pure iptables.

#!/bin/bash

rulefile=`mktemp`
errfile=`mktemp`

perform_firewall()
{
if [ "_$1" = "_v6" ] ; then
iptables=ip6tables
else
iptables=iptables
fi

echo "# Generated by VMmanager KVM on `date`" > $rulefile
echo "*filter" >> $rulefile
rulesdir="/etc/vmmgr/$iptables.rules.d/"
rules=`find $rulesdir -type f -iname '*.rule' | sort`
for i in $rules
do
cat $i >> $rulefile
echo >> $rulefile
done
echo "COMMIT" >> $rulefile
$iptables-restore < $rulefile 2>$errfile >/dev/null || return 1
}

delete-temp()
{
rm -f $rulefile
rm -f $errfile
}
error()
{
cat $rulefile
echo "--------------------------------"
cat $errfile
delete-temp
exit 1
}


perform_firewall || error
perform_firewall v6 || error

delete-temp

ksenya 09-17-2018 10:26 AM

Please send us the result of the file execution, not its content.


All times are GMT +2. The time now is 05:12 PM.

Powered by vBulletin® Version 3.8.9
Copyright ©2000 - 2024, vBulletin Solutions, Inc.