On Thu, 2005-08-25 at 07:48 -0700, centos at silverservers.com wrote: > Hello CentOS, > > I'm having a strange situation on one of my servers. I'm running > CentOS with all the latest yum updates. It runs fine, but iptables > does not seem to be 'consistently' dropping the packets from the IP's > I've put a drop rule in for. When I do iptables -L I still see the > rule in place: > > iptables -L > Chain INPUT (policy ACCEPT) > target prot opt source destination > RH-Firewall-1-INPUT all -- anywhere anywhere > DROP all -- ip176-0.netcathost.com/24 anywhere > > With this rule in place and iptables running, I am now getting the > blocked IP's showing up in my apache logs again. this used to work... > has something changed? > Rather than posting the output of iptables -L, could you send the file /etc/sysconfig/iptables to the list. Also, what happens if you restart iptables? /sbin/service iptables restart Any errors? Sean -- Sean O'Connell Office of Engineering Computing oconnell at soe.ucsd.edu Jacobs School of Engineering, UCSD 858.534.9716 (49716)