-
Notifications
You must be signed in to change notification settings - Fork 271
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
firewall-cmd fails on shutdown #48
Comments
This means that firewalld has already been stopped in the shutdown process by systemd. There is no way to talk to firewalld anymore at this moment. fail2ban should make sure to make this change before firewalld has been stopped by systemd. |
http://thread.gmane.org/gmane.comp.sysutils.systemd.devel/29959/focus=29971 See other Lennart responses too. Solution is simply |
I have forgotten to say that ordenation between firewalld and fail2ban is ok. The problem is that without |
@t-woerner , thanks for modifying firewalld.service in 2948525. However http://lists.opensuse.org/opensuse-packaging/2013-05/msg00102.html |
Fixed in 0.4.0. |
CentOS 7 + EPEL here, firewalld-0.3.9-11.el7.noarch. fail2ban-firewalld package sets firewall-cmd/ipset action, see
https://bugzilla.redhat.com/show_bug.cgi?id=979622
On shutdown, fail2ban calls:
But firewall-cmd fails with (excerpt from /var/log/fail2ban.log):
"Conex\xc3\xa3o recusada" is "Connection refused".
And then ipset also fails:
It only fails this way on system shutdown. When I restart fail2ban.service all works as it should.
On Fedora 22 it works as expected.
The text was updated successfully, but these errors were encountered: