View All Products
Compute
Storage
Databases
Networking
Developer Tools
Delivery
Security
Services
Industries
Pricing
Community
Engage With Us
Community Questions How an I change the parameterip_pkt_list_tot of iptables?
Log in to Ask a Question

How an I change the parameterip_pkt_list_tot of iptables?

general

Ippktlisttot is a parameter of iptables' module iptrecent.

I want to use the module recent of iptables and I need to change the parameter ippktlist_tot.

I am using debian with kernal Latest 3.0 (3.0.4-linode36).

I can't find the file /etc/modprobe.conf,so I created one and added

options iptrecent iplisttot=1000 ippktlisttot=60

but it can't work…

And I tried this.

modprobe iptrecent ippktlisttot=50

FATAL: Module ipt_recent not found.

I've tried looking up info but frankly couldn't find any real information.

Thanks.

4 Replies

The Linode kernels are monolithic, since they can't rely on any particular modules being present within your system. Unless there's another way to modify these parameters at runtime, you might end up having to run a non-Linode kernel to make this happen.

I'm having this same problem on CentOS 5.6 (kernel version of 2.6.39.1-linode34), and I have no idea how to solve it - and I really don't want to resort to a non-Linode kernel unless I absolutely have to.

I do have an /etc/modprobe.conf file, but adding these options to it doesn't change anything. Doing a 'cat /sys/module/xtrecent/parameters/iplist_tot' still shows the old value.

A poster in this thread suggested modifying these parameters at runtime - how could I do this? Running 'modprobe iptrecent' or 'modprobe xtrecent' gives errors.

Installing modules on a Linode kernel is apparently possible, but sufficiently difficult to be impractical. So you can't use modprobe to install them.

I put this at the end of my /etc/rc.d/rc.sysinit file:

# change xt_recent module parameters for iptables
chmod 644 /sys/module/xt_recent/parameters/*
echo 300 > /sys/module/xt_recent/parameters/ip_list_tot
echo 60 > /sys/module/xt_recent/parameters/ip_pkt_list_tot

Seems to work so far. I'll post back if I have any problems with it.

Reply

Please enter an answer
Tips:

You can mention users to notify them: @username

You can use Markdown to format your question. For more examples see the Markdown Cheatsheet.

> I’m a blockquote.

I’m a blockquote.

[I'm a link] (https://www.google.com)

I'm a link

**I am bold** I am bold

*I am italicized* I am italicized

Log in to Reply
Community Code of Conduct