Fresh install not working (solved)

[neo76]

This problem already solved!
soon making him a description for those who will run into this problem! 

Thanx for your all help Mustafa!

[MRatWork]

No more investigate. Maybe related to iptables. Using 'chkconfig iptables off; chkconfig --del iptables' is not enough. Need 'mv -f /etc/sysconfig/iptables /etc/sysconfig/iptables.kloxosave' to make sure no 'auto-restart' for iptables.

[neo76]

Firewall need and good but only to be given config..

I'll explain what to do if you else runs into this problem after clean installation
Develop a customized way to protect well-functioning

Stop iptables service: 

Code: [Select]

/etc/init.d/iptables stop 
Disable iptables service: 

Code: [Select]

chkconfig iptables off 
Copy this code to /etc/init.d/firewall

Code: [Select]

vi /etc/init.d/firewall
paste edited content: *(i recomanded before change in kloxo default ports... ssh/kloxo and edited their own unique ports paste)

Code: [Select]

#!/bin/sh
# firewall
# chkconfig: 3 21 91
# description: Starts, stops iptables firewall

case "$1" in
start)

# Clear rules
iptables -t filter -F
iptables -t filter -X
echo - Clear rules : [OK]

# SSH In
iptables -t filter -A INPUT -p tcp --dport 22 -j ACCEPT
echo - SSH : [OK]

# Don't break established connections
iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
iptables -A OUTPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
echo - established connections : [OK]

# Block all connections by default
iptables -t filter -P INPUT DROP
iptables -t filter -P FORWARD DROP
iptables -t filter -P OUTPUT DROP
echo - Block all connections : [OK]

# SYN-Flood Protection
iptables -N syn-flood
iptables -A syn-flood -m limit --limit 10/second --limit-burst 50 -j RETURN
iptables -A syn-flood -j LOG --log-prefix "SYN FLOOD: "
iptables -A syn-flood -j DROP
echo - SYN-Flood Protection : [OK]

# Loopback
iptables -t filter -A INPUT -i lo -j ACCEPT
iptables -t filter -A OUTPUT -o lo -j ACCEPT
echo - Loopback : [OK]

# ICMP (Ping)
iptables -t filter -A INPUT -p icmp -j ACCEPT
iptables -t filter -A OUTPUT -p icmp -j ACCEPT
echo - PING : [OK]

# DNS In/Out
iptables -t filter -A OUTPUT -p tcp --dport 53 -j ACCEPT
iptables -t filter -A OUTPUT -p udp --dport 53 -j ACCEPT
iptables -t filter -A INPUT -p tcp --dport 53 -j ACCEPT
iptables -t filter -A INPUT -p udp --dport 53 -j ACCEPT
echo - DNS : [OK]

# NTP Out
iptables -t filter -A OUTPUT -p udp --dport 123 -j ACCEPT
echo - NTP : [OK]

# WHOIS Out
iptables -t filter -A OUTPUT -p tcp --dport 43 -j ACCEPT
echo - WHOIS : [OK]

# FTP Out
iptables -t filter -A OUTPUT -p tcp --dport 20:21 -j ACCEPT
iptables -t filter -A OUTPUT -p tcp --dport 45000:65000 -j ACCEPT
# FTP In
iptables -t filter -A INPUT -p tcp --dport 20:21 -j ACCEPT
iptables -t filter -A INPUT -p tcp --dport 45000:65000 -j ACCEPT
iptables -t filter -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
echo - FTP : [OK]

# HTTP + HTTPS Out
iptables -t filter -A OUTPUT -p tcp --dport 80 -j ACCEPT
iptables -t filter -A OUTPUT -p tcp --dport 443 -j ACCEPT
# HTTP + HTTPS In
iptables -t filter -A INPUT -p tcp --dport 80 -j ACCEPT
iptables -t filter -A INPUT -p tcp --dport 443 -j ACCEPT
echo - HTTP/HTTPS : [OK]

# Mail SMTP:25
iptables -t filter -A INPUT -p tcp --dport 25 -j ACCEPT
iptables -t filter -A OUTPUT -p tcp --dport 25 -j ACCEPT
echo - SMTP : [OK]

# Mail SMTP:465
iptables -t filter -A INPUT -p tcp --dport 465 -j ACCEPT
iptables -t filter -A OUTPUT -p tcp --dport 465 -j ACCEPT
echo - SMTP : [OK]

# Mail SMTP:587
iptables -t filter -A INPUT -p tcp --dport 587 -j ACCEPT
iptables -t filter -A OUTPUT -p tcp --dport 587 -j ACCEPT
echo - SMTP : [OK]


# Mail POP3:110
iptables -t filter -A INPUT -p tcp --dport 110 -j ACCEPT
iptables -t filter -A OUTPUT -p tcp --dport 110 -j ACCEPT
echo - POP : [OK]

# Mail IMAP:143
iptables -t filter -A INPUT -p tcp --dport 143 -j ACCEPT
iptables -t filter -A OUTPUT -p tcp --dport 143 -j ACCEPT
echo - IMAP : [OK]


# Kloxo
iptables -t filter -A INPUT -p tcp --dport 7777:7778 -j ACCEPT
iptables -t filter -A OUTPUT -p tcp --dport 7777:7778 -j ACCEPT
echo - Kloxo : [OK]

echo - Firewall [OK]
exit 0
;;


stop)
echo "Stopping Firewall... "
iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -t filter -F
echo "Firewall Stopped!"
exit 0
;;

restart)
/etc/init.d/firewall stop
/etc/init.d/firewall start
;;

*)
echo "Usage: /etc/init.d/firewall {start|stop|restart}"
exit 1
;;
esac

:wq

After:

Code: [Select]

chmod 700 /etc/init.d/firewall 
add firewall service: 

Code: [Select]

chkconfig --add firewall 
auto start firewall: 

Code: [Select]

chkconfig --level 2345 firewall on 
start/stop/restart firewall: 

Code: [Select]

/etc/init.d/firewall start 

Code: [Select]

/etc/init.d/firewall stop

Code: [Select]

/etc/init.d/firewall restart

Dear Mustafa, if you find a bug in your code please edit!
For my this working perfect!
In addition, I use the DDoS was also (if someone might be interested in this post I write separately to the installation and configuration) *It can be quite helpful when you are attacking someone's server..

[MRatWork]

Inform here 'yum list firewall*; which firewall'.

As I know, CentOS 5/6 use iptables as firewall service. CentOS 7 use firewalld as firewall service. It's why Kloxo-MR only detect iptables and firewalld. I will add firewall service also in next update.

[neo76]

Code: [Select]

]# yum list firewall*
Loaded plugins: fastestmirror, presto, priorities, protectbase, replace
Loading mirror speeds from cached hostfile
mratwork-epel/metalink                                   |  21 kB     00:00
 * base: ftp.freepark.org
 * extras: ftp.freepark.org
 * mratwork-epel: mirror.atomki.mta.hu
 * mratwork-ius-archive: mirror.amsiohosting.net
 * mratwork-ius-stable: mirror.amsiohosting.net
 * mratwork-release-neutral-noarch: rpms.mratwork.com
 * mratwork-release-version-arch: rpms.mratwork.com
 * mratwork-webtatic: uk.repo.webtatic.com
 * updates: ftp.freepark.org
base                                                     | 3.7 kB     00:00
extras                                                   | 3.4 kB     00:00
mratwork-epel                                            | 4.3 kB     00:00
mratwork-epel/primary_db                                 | 5.9 MB     00:00
mratwork-google-mod-pagespeed                            |  951 B     00:00
mratwork-ius-archive                                     | 2.4 kB     00:00
mratwork-ius-archive/primary_db                          | 3.3 MB     00:00
mratwork-ius-stable                                      | 2.3 kB     00:00
mratwork-ius-stable/primary_db                           | 209 kB     00:00
mratwork-mariadb                                         | 2.9 kB     00:00
mratwork-nginx                                           | 2.9 kB     00:00
mratwork-nginx/primary_db                                |  68 kB     00:00
mratwork-nginx-stable                                    | 2.9 kB     00:00
mratwork-release-neutral-noarch                          | 1.3 kB     00:00
mratwork-release-version-arch                            | 1.2 kB     00:00
mratwork-varnish-3.0                                     |  951 B     00:00
mratwork-webtatic                                        | 3.6 kB     00:00
updates                                                  | 3.4 kB     00:00
0 packages excluded due to repository protections
Error: No matching Packages to list


Code: [Select]

which firewall
/usr/bin/which: no firewall in (/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/s                                                   bin:/usr/bin:/root/bin)


[waldeit]

 
Now it Works with fresh 6.8 / 64 / Mr-Kloxo 7.0.0.c-2017032001.mr / Kloxo7 install.

Disable iptables service:
= chkconfig iptables off 
+ Reboot

Thank you 

[neo76]

...moreover work whitout iptable disable command and whitout restart in CentOS Linux release 7.3.1611 (Core)

[MRatWork]

In certain CentOS 5/6 template for VPS, run 'chkconfig iptables off' is not enough. Need rename iptables file in /etc/sysconfig. In CentOS 7, iptables running by firewalld and need disable them with 'chkconfig xxx off'.