iptables error: "No chain/target/match by that name."

Question

Trying to block a certain http/https URL request from hitting the server by adding this rule to iptables:

iptables -I INPUT 1 -p tcp -m multiport --destination-ports 80,443 -m string --string "my_string" --algo bm -j DROP

This returns the following error: No chain/target/match by that name

I can add other rules to the INPUT chain no problem. I believe I've identified the culprit as the string module, but to me the syntax looks fine.

are you using an standdard ubuntu kernel? Because the syntax is fine. — Diego Woitasen, Apr 21 '12 at 20:34
A module is missing, looks at directory modules if you have the modules that you are using in your command line. Your command ran perfect in you of my Ubuntu 10.04 servers. — Diego Woitasen, Apr 21 '12 at 20:58

score 0 · Answer 1 · answered Apr 21 '12 at 21:52

0

There are some specific considerations to be taken if you want to properly setup iptables on an openvz vps, take a look at the official openvz wiki : http://wiki.openvz.org/Setting_up_an_iptables_firewall

answered Apr 21 '12 at 21:52

m0ntassar

1 Answers1