LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)
-   -   csf invalid chain (https://www.linuxquestions.org/questions/linux-security-4/csf-invalid-chain-4175648887/)

webx99 02-23-2019 04:27 AM

csf invalid chain
 
Greetings

I use csf (Centos 6) 64bit and noticed some "invalid" when restarting csf.

from csf -l :

Chain INPUT (policy DROP 0 packets, 0 bytes)
num pkts bytes target prot opt in out source destination

...
....
17 3438 296K INVALID tcp -- !lo * 0.0.0.0/0 0.0.0.0/0

...


and also:

Chain OUTPUT (policy DROP 0 packets, 0 bytes)
num pkts bytes target prot opt in out source destination

...
...

20 3890 5630K INVALID tcp -- * !lo 0.0.0.0/0 0.0.0.0/0

.....

more:

Chain INVALID (2 references)

1 25 1000 INVDROP all -- * * 0.0.0.0/0 0.0.0.0/0 state INVALID



when restarting csf (csf -r):

...
Flushing chain `INVALID'
...
Deleting chain `INVALID'

Flushing chain `INVALID'

Deleting chain `INVALID'

INVALID tcp opt -- in !lo out * 0.0.0.0/0 -> 0.0.0.0/0

INVALID tcp opt -- in * out !lo 0.0.0.0/0 -> 0.0.0.0/0


INVALID tcp opt in !lo out * ::/0 -> ::/0
INVALID tcp opt in * out !lo ::/0 -> ::/0

any idea?

TIA.

unSpawn 03-24-2019 07:23 AM

Quote:

Originally Posted by webx99 (Post 5965875)
I use csf (Centos 6) 64bit and noticed some "invalid" when restarting csf. (..) any idea?

That's just a chain named "INVALID".

webx99 04-05-2019 03:21 PM

Quote:

Originally Posted by unSpawn (Post 5977190)
That's just a chain named "INVALID".

Thanks for the reply

how can I delete that chain ?


All times are GMT -5. The time now is 09:02 AM.