Question Problem with iptables in Debian 8

Discussion in 'Server' started by necrotino, Jan 4, 2017.

  1. necrotino

    necrotino New Member

    First of all, this is a great community and I want to thank those who make this possible :)

    Well I have a problems with mi iptables configuration, ts3server run well while I have everything open like this:
    Code:
    # Generated by iptables-save v1.4.21 on Tue Jan  3 19:10:24 2017
    *filter
    :INPUT ACCEPT [0:0]
    :FORWARD ACCEPT [0:0]
    :OUTPUT ACCEPT [0:0]
    COMMIT
    # Completed on Tue Jan  3 19:10:24 2017
    
    But when I put my configuration is there some kind of problem with ts3server connection. I DROP all INPUT, OUTPUT, FORWARD and i have to put ports manually. When I apply these iptables, ts3server works but it takes a long time to start like 5-10 minutes and I can not wait so long
    This is my iptable configuration:
    Code:
    # Generated by iptables-save v1.4.21 on Tue Jan  3 19:10:24 2017
    *filter
    :INPUT DROP [0:0]
    :FORWARD DROP [0:0]
    :OUTPUT DROP [0:0]
    
    # INPUT Open ports
    -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT
    
    -A INPUT -p udp -m udp --dport 9987 -j ACCEPT
    -A INPUT -p tcp -m tcp --dport 10011 -j ACCEPT
    -A INPUT -p tcp -m tcp --dport 30033 -j ACCEPT
    
    # OUTPUT Open ports
    -A OUTPUT -p tcp -m tcp --sport 22 -j ACCEPT
    
    -A OUTPUT -p udp -m udp --sport 9987 -j ACCEPT
    -A OUTPUT -p tcp -m tcp --sport 10011 -j ACCEPT
    -A OUTPUT -p tcp -m tcp --sport 30033 -j ACCEPT
    
    COMMIT
    # Completed on Tue Jan  3 19:10:24 2017
    This is the start log, I think the problem starts at: 2017-01-04 09:09:18.208605|INFO |DatabaseQuery | |checking database integrity (may take a while) ,
    Code:
    2017-01-04 09:09:18.205813|INFO    |ServerLibPriv |   |TeamSpeak 3 Server 3.0.13.6 (2016-11-08 08:48:33)
    2017-01-04 09:09:18.206048|INFO    |ServerLibPriv |   |SystemInformation: Linux 3.16.0-4-amd64 #1 SMP Debian 3.16.36-1+deb8u2 (2016-10-19) x86_64 Binary: 64bit
    2017-01-04 09:09:18.206156|INFO    |ServerLibPriv |   |Using hardware aes
    2017-01-04 09:09:18.207383|INFO    |DatabaseQuery |   |dbPlugin name:    SQLite3 plugin, Version 3, (c)TeamSpeak Systems GmbH
    2017-01-04 09:09:18.207587|INFO    |DatabaseQuery |   |dbPlugin version: 3.11.1
    2017-01-04 09:09:18.208605|INFO    |DatabaseQuery |   |checking database integrity (may take a while)
    2017-01-04 09:11:25.608042|ERROR   |              |   |TS3ANetwork::Connect failed error: 110
    2017-01-04 09:11:25.608135|ERROR   |              |   |Unable to connect to primary address, trying secondary
    2017-01-04 09:13:32.840027|ERROR   |              |   |TS3ANetwork::Connect failed error: 110
    2017-01-04 09:13:32.841958|ERROR   |Accounting    |   |Unable to connect to accounting server
    2017-01-04 09:13:32.841991|INFO    |Accounting    |   |Licensed by r4p3.netx
    2017-01-04 09:13:32.842005|INFO    |Accounting    |   |licensed to       : MESMERiZE
    2017-01-04 09:13:32.842016|INFO    |Accounting    |   |type              : Hoster
    2017-01-04 09:13:32.842032|INFO    |Accounting    |   |starting date     : Fri Jan  1 00:00:00 2010
    2017-01-04 09:13:32.842048|INFO    |Accounting    |   |ending date       : Wed Jan  1 00:00:00 2025
    2017-01-04 09:13:32.842066|INFO    |Accounting    |   |max virtualservers: 65535
    2017-01-04 09:13:32.842081|INFO    |Accounting    |   |max slots         : 16776960
    2017-01-04 09:13:34.862357|INFO    |              |   |Puzzle precompute time: 2003
    2017-01-04 09:13:34.862898|INFO    |FileManager   |   |listening on 0.0.0.0:30033, :::30033
    2017-01-04 09:13:34.909331|INFO    |VirtualServer |1  |listening on 0.0.0.0:9987, :::9987
    2017-01-04 09:13:34.909558|INFO    |CIDRManager   |   |updated query_ip_whitelist ips: 127.0.0.1/32, ::1/128,
    2017-01-04 09:13:34.909779|INFO    |Query         |   |listening on 0.0.0.0:10011, :::10011
    Someone can show me how to configure my iptables, I want to keep the policy in DROP. This is my problem, I hope your help and thanks for taking the time to read. :)
     

Share This Page