KeyHelp Community

Das offizielle KeyHelp Forum der Keyweb AG / The official KeyHelp forum of Keyweb AG
https://community.keyhelp.de/

Erstinstallation Firewall Installationsfehler

https://community.keyhelp.de/viewtopic.php?t=4951

Page 1 of 1

Erstinstallation Firewall Installationsfehler

Posted: Sat 17. Nov 2018, 15:44
by copiis
Hallo,

gerade KeyHelp auf ein frisches Ubuntu 18.04 installier leider gab es bei der Firewall Installation die Fehlermeldung das irgend ein Pfad nicht gefunden wurde.
Soll ich den ganzen Installationsprozess wiederholen?

Gruß Richard

Re: Erstinstallation Firewall Installationsfehler

Posted: Sat 17. Nov 2018, 16:25
by OlliTheDarkness
Bügel es nochmal drüber und poste ggf. die Ausgabe des Log´s.

Re: Erstinstallation Firewall Installationsfehler

Posted: Sat 17. Nov 2018, 16:35
by copiis

Code: Select all

Firewall (iptables) ...                     
Warning: file_put_contents(/etc/network/if-pre-up.d/keyhelp_load_rules): failed to open stream: No such file or directory in /home/keyhelp/www/keyhelp/core/pending/File.php on line 311
Log

Code: Select all

Firewall (iptables)]
  exec | mkdir -p -m 0700 /etc/keyhelp/iptables/
  files | /home/keyhelp/www/keyhelp/install/config/common/iptables/ipv4_wan => /etc/keyhelp/iptables/startup_rules_ipv4
  files | /home/keyhelp/www/keyhelp/install/config/common/iptables/ipv6_wan => /etc/keyhelp/iptables/startup_rules_ipv6
  files | /home/keyhelp/www/keyhelp/install/config/common/iptables/keyhelp_load_rules => /etc/network/if-pre-up.d/keyhelp_load_rules
    Could not save file "/etc/network/if-pre-up.d/keyhelp_load_rules"
 
    >>>>>>>>>>>>>>>>>>>>>>
    !!! ERROR DETECTED !!!
    <<<<<<<<<<<<<<<<<<<<<<
 
  [SKIPPED DUE PREVIOUS ERRORS] exec | chmod 0755 /etc/network/if-pre-up.d/keyhelp_load_rules
  [SKIPPED DUE PREVIOUS ERRORS] db | UPDATE `keyhelp`.`firewall` SET `rules` = '{"INPUT":{"name":"INPUT","comment":"","rules":[{"is_disabled":false,"comment":"","action":"Bogus","params":[]},{"is_disabled":false,"comment":"","action":"Always","params":[]},{"is_disabled":false,"comment":"","action":"Banned","params":[]},{"is_disabled":false,"comment":"","action":"fail2ban","params":[]},{"is_disabled":false,"comment":"","action":"Allow","params":[]}],"policy":"ACCEPT"},"FORWARD":{"name":"FORWARD","comment":"","rules":[{"is_disabled":false,"comment":"","action":"Bogus","params":[]},{"is_disabled":false,"comment":"","action":"Always","params":[]},{"is_disabled":false,"comment":"","action":"Banned","params":[]},{"is_disabled":false,"comment":"","action":"Allow","params":[]}],"policy":"ACCEPT"},"OUTPUT":{"name":"OUTPUT","comment":"","rules":[],"policy":"ACCEPT"},"Allow":{"name":"Allow","comment":"","rules":[{"is_disabled":false,"comment":"","action":"Friend","params":[{"is_inverted":false,"name":"--protocol","value":"icmp"},{"is_inverted":false,"name":"--match","value":"icmp"},{"is_inverted":false,"name":"--icmp-type","value":"8"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"icmp"},{"is_inverted":false,"name":"--match","value":"icmp"},{"is_inverted":false,"name":"--match","value":"limit"},{"is_inverted":false,"name":"--icmp-type","value":"any"},{"is_inverted":false,"name":"--limit","value":"1\/sec"}]},{"is_disabled":false,"comment":"","action":"DROP","params":[{"is_inverted":false,"name":"--protocol","value":"icmp"},{"is_inverted":false,"name":"--match","value":"icmp"},{"is_inverted":false,"name":"--icmp-type","value":"any"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--in-interface","value":"lo"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"53"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"udp"},{"is_inverted":false,"name":"--match","value":"udp"},{"is_inverted":false,"name":"--destination-port","value":"53"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"20"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"21"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"multiport"},{"is_inverted":false,"name":"--destination-ports","value":"30000:30500"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"22"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"80"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"443"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"25"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"587"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"110"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"143"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"993"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"995"}]},{"is_disabled":false,"comment":"","action":"REJECT","params":[{"is_inverted":false,"name":"--reject-with","value":"icmp-port-unreachable"}]}]},"Always":{"name":"Always","comment":"","rules":[{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--in-interface","value":"lo"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--match","value":"state"},{"is_inverted":false,"name":"--state","value":"RELATED,ESTABLISHED"}]},{"is_disabled":false,"comment":"","action":"Friend","params":[]}]},"Banned":{"name":"Banned","comment":"","rules":[]},"Bogus":{"name":"Bogus","comment":"","rules":[{"is_disabled":false,"comment":"","action":"DROP","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--tcp-flags","value":"FIN,SYN FIN,SYN"}]},{"is_disabled":false,"comment":"","action":"DROP","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--tcp-flags","value":"SYN,RST SYN,RST"}]},{"is_disabled":false,"comment":"","action":"DROP","params":[{"is_inverted":false,"name":"--source","value":"169.254.0.0\/16"}]},{"is_disabled":false,"comment":"","action":"DROP","params":[{"is_inverted":false,"name":"--source","value":"172.16.0.0\/12"}]},{"is_disabled":false,"comment":"","action":"DROP","params":[{"is_inverted":false,"name":"--source","value":"192.0.2.0\/24"}]},{"is_disabled":false,"comment":"","action":"DROP","params":[{"is_inverted":false,"name":"--source","value":"192.168.0.0\/16"}]},{"is_disabled":false,"comment":"","action":"DROP","params":[{"is_inverted":false,"name":"--source","value":"10.0.0.0\/8"}]},{"is_disabled":false,"comment":"","action":"DROP","params":[{"is_inverted":false,"name":"--source","value":"127.0.0.0\/8"},{"is_inverted":true,"name":"--in-interface","value":"lo"}]}]},"Friend":{"name":"Friend","comment":"","rules":[{"is_disabled":false,"comment":"","action":"RETURN","params":[]}]},"fail2ban":{"name":"fail2ban","comment":"","rules":[]}}' WHERE `ip_version` = 'ipv4' AND `type` = 'current'
  [SKIPPED DUE PREVIOUS ERRORS] db | UPDATE `keyhelp`.`firewall` SET `rules` = '{"INPUT":{"name":"INPUT","comment":"","rules":[{"is_disabled":false,"comment":"","action":"Bogus","params":[]},{"is_disabled":false,"comment":"","action":"Always","params":[]},{"is_disabled":false,"comment":"","action":"Banned","params":[]},{"is_disabled":false,"comment":"","action":"fail2ban","params":[]},{"is_disabled":false,"comment":"","action":"Allow","params":[]}],"policy":"ACCEPT"},"FORWARD":{"name":"FORWARD","comment":"","rules":[{"is_disabled":false,"comment":"","action":"Bogus","params":[]},{"is_disabled":false,"comment":"","action":"Always","params":[]},{"is_disabled":false,"comment":"","action":"Banned","params":[]},{"is_disabled":false,"comment":"","action":"Allow","params":[]}],"policy":"ACCEPT"},"OUTPUT":{"name":"OUTPUT","comment":"","rules":[],"policy":"ACCEPT"},"Allow":{"name":"Allow","comment":"","rules":[{"is_disabled":false,"comment":"","action":"Friend","params":[{"is_inverted":false,"name":"--protocol","value":"ipv6-icmp"},{"is_inverted":false,"name":"--match","value":"icmp6"},{"is_inverted":false,"name":"--icmpv6-type","value":"128"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"ipv6-icmp"},{"is_inverted":false,"name":"--match","value":"limit"},{"is_inverted":false,"name":"--limit","value":"1\/sec"}]},{"is_disabled":false,"comment":"","action":"DROP","params":[{"is_inverted":false,"name":"--protocol","value":"ipv6-icmp"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--in-interface","value":"lo"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"53"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"udp"},{"is_inverted":false,"name":"--match","value":"udp"},{"is_inverted":false,"name":"--destination-port","value":"53"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"20"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"21"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"multiport"},{"is_inverted":false,"name":"--destination-ports","value":"30000:30500"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"22"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"80"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"443"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"25"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"587"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"110"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"143"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"993"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--destination-port","value":"995"}]},{"is_disabled":false,"comment":"","action":"REJECT","params":[{"is_inverted":false,"name":"--reject-with","value":"icmp6-port-unreachable"}]}]},"Always":{"name":"Always","comment":"","rules":[{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--in-interface","value":"lo"}]},{"is_disabled":false,"comment":"","action":"ACCEPT","params":[{"is_inverted":false,"name":"--match","value":"state"},{"is_inverted":false,"name":"--state","value":"RELATED,ESTABLISHED"}]},{"is_disabled":false,"comment":"","action":"Friend","params":[]}]},"Banned":{"name":"Banned","comment":"","rules":[]},"Bogus":{"name":"Bogus","comment":"","rules":[{"is_disabled":false,"comment":"","action":"DROP","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--tcp-flags","value":"FIN,SYN FIN,SYN"}]},{"is_disabled":false,"comment":"","action":"DROP","params":[{"is_inverted":false,"name":"--protocol","value":"tcp"},{"is_inverted":false,"name":"--match","value":"tcp"},{"is_inverted":false,"name":"--tcp-flags","value":"SYN,RST SYN,RST"}]},{"is_disabled":false,"comment":"","action":"DROP","params":[{"is_inverted":false,"name":"--source","value":"::1\/128"},{"is_inverted":true,"name":"--in-interface","value":"lo"}]}]},"Friend":{"name":"Friend","comment":"","rules":[{"is_disabled":false,"comment":"","action":"RETURN","params":[]}]},"fail2ban":{"name":"fail2ban","comment":"","rules":[]}}' WHERE `ip_version` = 'ipv6' AND `type` = 'current'

Re: Erstinstallation Firewall Installationsfehler

Posted: Sat 17. Nov 2018, 17:59
by OlliTheDarkness
ok ...
da scheint wohl irgenwas nicht geschrieben zu werden wie es sollte.
Erstell mal die Dateu /etc/network/if-pre-up.d/keyhelp_load_rules mit folgendem Inhalt:

Code: Select all

#!/bin/bash
        
IPv4="/etc/keyhelp/iptables/startup_rules_ipv4"
IPv6="/etc/keyhelp/iptables/startup_rules_ipv6"
    
if [ -f $IPv4 ]; then
    iptables-restore < $IPv4
fi

if [ -f $IPv6 ]; then
    ip6tables-restore < $IPv6
fi

exit 0
Besitzer und Gruppe root
Rechte 755

Danach las den Installer nochmal drüber rollen.

Is nur ein Versuchsansatz.

Re: Erstinstallation Firewall Installationsfehler

Posted: Sat 17. Nov 2018, 19:04
by copiis
Hmmm. gibt es vielleich eine weniger Brutale Methode?

Bin schon gerade das Backup am einspielen.

Re: Erstinstallation Firewall Installationsfehler  [GELÖST]

Posted: Sat 17. Nov 2018, 20:14
by nikko
Versuche mal bitte eine neue leere Vorlage zu erstellen in der Firewall- Verwaltung und lade diese.
Wenn das Geschehen ist, versuche mal bitte
"Entwurf hinzufügen" -> "Benutze existierende Regeln: Empfohlene Regeln"

Re: Erstinstallation Firewall Installationsfehler

Posted: Sat 17. Nov 2018, 20:16
by nikko
...ich bin immer noch kein Freund von 18.04... bleibe bei 16.04 (nur so am Rande)

Re: Erstinstallation Firewall Installationsfehler

Posted: Sat 17. Nov 2018, 20:28
by copiis
nikko wrote: Sat 17. Nov 2018, 20:14 Versuche mal bitte eine neue leere Vorlage zu erstellen in der Firewall- Verwaltung und lade diese.
Wenn das Geschehen ist, versuche mal bitte
"Entwurf hinzufügen" -> "Benutze existierende Regeln: Empfohlene Regeln"
Supi hat geklappt!
All times are UTC+02:00
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited