tlhackque
commented
7 years ago After considerable off-line analysis, we determined that the problem is an incomplete or corrupt version of iptables. Specifically, (at least) the limit and multiport modules are not present and can't be loaded - either by iptables, by iptables-restore, or by modprobe.
The system is using a kernel not from a standard Debian distribution nor built by you.
An empty lsmod tends to indicate that this is a VPS, which is not exporting the kernel module library nor loading these modules into the kernel.
Resolution will require you to contact the kernel (perhaps hosting) provider. Be aware that configuration changes and/or BlockCountries updates may require additional netfilter modules. The hosting provider of a VPS may not wish to load all possible modules. So this may be an on-going issue.
In any case, this is not a BlockCountries issue.
To make troubleshooting similar systems easier for future users, a test for this misconfiguration of iptables is in the next major release of bcinstall.
borjaevo
I tried to run BlockCountries in a debian 7 server.
Starting blocked countries IP filter: Updated IP zone data from apnic Updated IP zone data from lacnic Updated IP zone data from afrinic Updated IP zone data from ripe Updated IP zone data from ariniptables-restore: line 11365 failed Rules update failed: exit code 1 at line 0 [FAILED]
Not sure if i done something wrong.
Thanks.