- 积分
- 12
- 威望
-
- 金钱
-
- 注册时间
- 2013-1-20
- 在线时间
- 小时
- 最后登录
- 1970-1-1
|
楼主 |
发表于 2013-6-7 09:09:14
|
显示全部楼层
CentOS's userspace tools are also incompatible with the connlimit module in our latest 3.x series kernels because the version of 'iptables' that is installed is too old:
//CentOS的用户空间工具在我们最新的3.x系列核心中与connlimit模块不兼容因为所安装的iptables版本太旧了:
-----
# iptables -V
iptables v1.4.7
-----
Please issue these commands, and again, remember that building from source means that this package will no longer be managed by your package management system (yum):
//输入以下指令,后面的懒得翻译,注意这会覆盖掉你的东西就行了- yum update
- rpm -e --nodeps iptables-1.4.7-9.el6.i686
- rpm -e --nodeps iptables-ipv6-1.4.7-9.el6.i686
- yum groupinstall 'Development Tools'
- wget http://www.netfilter.org/projects/iptables/files/iptables-1.4.19.tar.bz2
- tar jxvf iptables-1.4.19.tar.bz2
- cd iptables-1.4.19
- LDFLAGS="-L$PWD/libiptc/.libs" ./configure --prefix=/usr --exec-prefix= --bindir=/usr/bin --with-xtlibdir=/lib/xtables --with-pkgconfigdir=/usr/lib/pkgconfig --enable-libipq --enable-devel
- make
- make install
//当你完成安装时,输入“iptables -V” 然后你会看到下面的内容
-----
iptables v1.4.19
-----
Now try to load that iptables rule:
//现在你可以用了
iptables -I FORWARD -p tcp --syn --dport 80 -m connlimit --connlimit-above 20 -j DROP
It should succeed with no error message. You can verify that the rule was loaded with either of these commands:
//下载应该能运行的了,你可以通过以下任意一个指令来验证你的规矩是否已经加载
iptables-save
iptables -L -n -v
搞定,感谢军哥提出指引&Linode客服
[ 本帖最后由 Sonic1997 于 2013-6-6 17:19 编辑 ] |
|
发表于 2013-6-6 00:36:38
发表于 2013-6-6 08:50:43
