Vuln firewall fw openvz limit

From Atomicorp Wiki
Revision as of 13:32, 16 March 2016 by Scott (Talk | contribs)

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

Description

This means that OpenVZ/Virtuozzo limits on maximum firewall rules are set so low as to not allow firewall rules to be enabled in ASL. The firewall in this condition can not be enabled.

To view the current limit run the following:

 cat /proc/user_beancounters |awk '/numiptent/ {print $5}'

Resolving This Vulnerability

Contact your provider to increase the maximum number of firewall rules allowed on your system. If you are planning on using geo-blocking firewall policies, this would require potentially hundreds of thousands of rules.


False Positives

There are no known False Positives for this.

Personal tools