Funtoo Linux BDFL drobbins Posted June 3, 2014 Funtoo Linux BDFL Report Share Posted June 3, 2014 Hi everyone, Some people are trying to set up iptables firewalls in their containers, and they are unexpectedly locking themselves out of their containers. The reason why this is happening is because stateful connection tracking is disabled by default in OpenVZ inside a container, and I need to manually enable it. So rules that track the state of connection (NEW, ESTABLISHED, RELATED), will not work, and then typically you will lose ssh access to your container. The solution (for now) is to contact me directly and have me enable stateful connection tracking if you plan to deploy a firewall, so that these rules will work for you. -Daniel mitzip 1 Link to comment Share on other sites More sharing options...
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!Register a new account
Already have an account? Sign in here.Sign In Now