[실습] iptables (--name -j)

정보보안기사/linux

[실습] iptables (--name -j)

멋쟁이천재사자 2023. 7. 25. 22:22

1. 설정 시도 - 오류

iptables -A INPUT -p TCP --syn --dport 80 -m recent --update --seconds 2 --hitcount 30 --name SYN_DROP -J DROP

2. trouble shooting

대문자 J 는 오류다.

unknown option "-J" 이라고 바로 뜬다.

고쳐서 해보았는데 또 오류가 난다.

Invalid argument. Run `dmesg' for more information.

dmesg 를 쳐보니 hitcount (30) is larger than packets to be remembered (20)

--hitcount 20 이라고 고침. 20 이상은 지원 안함?

3. 재시도

iptables -A INPUT -p TCP --syn --dport 80 -m recent --update --seconds 2 --hitcount 20 --name SYN_DROP -j DROP

처리가 잘 됨. iptables -nL 로 확인해봄.

tcp dpt:80 flags:0x17/0x02 recent: UPDATE seconds: 2 hit_count: 20 name: SYN_DROP side: source mask:

SYN_DROP 이 예약어인줄 알고 manual 찾아봄. 없음. 예약어가 아님. MY_TEST 라고 해보니 그대로 처리됨. 예약어 아님

iptables -A INPUT -p TCP --syn --dport 80 -m recent --update --seconds 2 --hitcount 20 --name MY_TEST -j DROP

tcp dpt:80 flags:0x17/0x02 recent: UPDATE seconds: 2 hit_count: 20 name: MY_TEST side: source mask:

상세 로그

[root@centos ~]# iptables -A INPUT -p TCP --syn --dport 80  -m recent  --update  --seconds 2  --hitcount 30  --name SYN_DROP  -J DROP
iptables v1.4.21: unknown option "-J"
Try `iptables -h' or 'iptables --help' for more information.
[root@centos ~]# iptables -A INPUT -p TCP --syn --dport 80  -m recent  --update  --seconds 2  --hitcount 30  --name SYN_DROP  -j DROP
iptables: Invalid argument. Run `dmesg' for more information.
[root@centos ~]# iptables -A INPUT -p tcp --syn --dport 80  -m recent  --update  --seconds 2  --hitcount 30  --name SYN_DROP  -j DROP
iptables: Invalid argument. Run `dmesg' for more information.
[root@centos ~]# dmsg
bash: dmsg: 명령을 찾을 수 없습니다...
[root@centos ~]# dmesg
[    0.000000] Initializing cgroup subsys cpuset
[    0.000000] Initializing cgroup subsys cpu
[    0.000000] Initializing cgroup subsys cpuacct
[    0.000000] Linux version 3.10.0-1160.el7.x86_64 (mockbuild@kbuilder.bsys.centos.org) (gcc version 4.8.5 20150623 (Red Hat 4.8.5-44) (GCC) )                                               #1 SMP Mon Oct 19 16:18:59 UTC 2020
[    0.000000] Command line: BOOT_IMAGE=/vmlinuz-3.10.0-1160.el7.x86_64 root=/dev/mapper/centos-root ro crashkernel=auto rd.lvm.lv=centos/root                                               rd.lvm.lv=centos/swap rhgb quiet LANG=ko_KR.UTF-8
[    0.000000] e820: BIOS-provided physical RAM map:
[    0.000000] BIOS-e820: [mem 0x0000000000000000-0x000000000009fbff] usable
[    0.000000] BIOS-e820: [mem 0x000000000009fc00-0x000000000009ffff] reserved
[    0.000000] BIOS-e820: [mem 0x00000000000f0000-0x00000000000fffff] reserved
[    0.000000] BIOS-e820: [mem 0x0000000000100000-0x000000007ffeffff] usable
[    0.000000] BIOS-e820: [mem 0x000000007fff0000-0x000000007fffffff] ACPI data
[    0.000000] BIOS-e820: [mem 0x00000000fffc0000-0x00000000ffffffff] reserved
[    0.000000] NX (Execute Disable) protection: active
[    0.000000] SMBIOS 2.5 present.
[    0.000000] DMI: innotek GmbH VirtualBox/VirtualBox, BIOS VirtualBox 12/01/2006
[    0.000000] e820: update [mem 0x00000000-0x00000fff] usable ==> reserved
[    0.000000] e820: remove [mem 0x000a0000-0x000fffff] usable
[    0.000000] e820: last_pfn = 0x7fff0 max_arch_pfn = 0x400000000
[    0.000000] MTRR default type: uncachable
[    0.000000] MTRR variable ranges disabled:
[    0.000000] PAT configuration [0-7]: WB  WC  UC- UC  WB  WP  UC- UC
[    0.000000] CPU MTRRs all blank - virtualized system.
[    0.000000] found SMP MP-table at [mem 0x0009fff0-0x0009ffff] mapped at [ffffffffff200ff0]
[    0.000000] Base memory trampoline at [ffff952dc0099000] 99000 size 24576
[    0.000000] BRK [0x52274000, 0x52274fff] PGTABLE
[    0.000000] BRK [0x52275000, 0x52275fff] PGTABLE
[    0.000000] BRK [0x52276000, 0x52276fff] PGTABLE
[    0.000000] BRK [0x52277000, 0x52277fff] PGTABLE
[    0.000000] BRK [0x52278000, 0x52278fff] PGTABLE
[    0.000000] BRK [0x52279000, 0x52279fff] PGTABLE
[    0.000000] RAMDISK: [mem 0x34402000-0x361f8fff]
[    0.000000] Early table checksum verification disabled
[    0.000000] ACPI: RSDP 00000000000e0000 00024 (v02 VBOX  )
[    0.000000] ACPI: XSDT 000000007fff0030 0003C (v01 VBOX   VBOXXSDT 00000001 ASL  00000061)
[    0.000000] ACPI: FACP 000000007fff00f0 000F4 (v04 VBOX   VBOXFACP 00000001 ASL  00000061)
[    0.000000] ACPI: DSDT 000000007fff0470 01B96 (v01 VBOX   VBOXBIOS 00000002 INTL 20100528)
[    0.000000] ACPI: FACS 000000007fff0200 00040
[    0.000000] ACPI: APIC 000000007fff0240 0005C (v02 VBOX   VBOXAPIC 00000001 ASL  00000061)
[    0.000000] ACPI: SSDT 000000007fff02a0 001CC (v01 VBOX   VBOXCPUT 00000002 INTL 20100528)
[    0.000000] ACPI: Local APIC address 0xfee00000
[    0.000000] No NUMA configuration found
[    0.000000] Faking a node at [mem 0x0000000000000000-0x000000007ffeffff]
[    0.000000] NODE_DATA(0) allocated [mem 0x7ffc9000-0x7ffeffff]
[    0.000000] Reserving 161MB of memory at 672MB for crashkernel (System RAM: 2047MB)
[    0.000000] Zone ranges:
[    0.000000]   DMA      [mem 0x00001000-0x00ffffff]
[    0.000000]   DMA32    [mem 0x01000000-0xffffffff]
[    0.000000]   Normal   empty
[    0.000000] Movable zone start for each node
[    0.000000] Early memory node ranges
[    0.000000]   node   0: [mem 0x00001000-0x0009efff]
[    0.000000]   node   0: [mem 0x00100000-0x7ffeffff]
[    0.000000] Initmem setup node 0 [mem 0x00001000-0x7ffeffff]
[    0.000000] On node 0 totalpages: 524174
[    0.000000]   DMA zone: 64 pages used for memmap
[    0.000000]   DMA zone: 21 pages reserved
[    0.000000]   DMA zone: 3998 pages, LIFO batch:0
[    0.000000]   DMA32 zone: 8128 pages used for memmap
[    0.000000]   DMA32 zone: 520176 pages, LIFO batch:31
[    0.000000] ACPI: PM-Timer IO Port: 0x4008
[    0.000000] ACPI: Local APIC address 0xfee00000
[    0.000000] ACPI: LAPIC (acpi_id[0x00] lapic_id[0x00] enabled)
[    0.000000] ACPI: LAPIC (acpi_id[0x01] lapic_id[0x01] enabled)
[    0.000000] ACPI: IOAPIC (id[0x02] address[0xfec00000] gsi_base[0])
[    0.000000] IOAPIC[0]: apic_id 2, version 17, address 0xfec00000, GSI 0-23
[    0.000000] ACPI: INT_SRC_OVR (bus 0 bus_irq 0 global_irq 2 dfl dfl)
[    0.000000] ACPI: INT_SRC_OVR (bus 0 bus_irq 9 global_irq 9 high level)
[    0.000000] ACPI: IRQ0 used by override.
[    0.000000] ACPI: IRQ9 used by override.
[    0.000000] Using ACPI (MADT) for SMP configuration information
[    0.000000] smpboot: Allowing 2 CPUs, 0 hotplug CPUs
[    0.000000] PM: Registered nosave memory: [mem 0x0009f000-0x0009ffff]
[    0.000000] PM: Registered nosave memory: [mem 0x000a0000-0x000effff]
[    0.000000] PM: Registered nosave memory: [mem 0x000f0000-0x000fffff]
[    0.000000] e820: [mem 0x80000000-0xfffbffff] available for PCI devices
[    0.000000] Booting paravirtualized kernel on bare hardware
[    0.000000] setup_percpu: NR_CPUS:5120 nr_cpumask_bits:2 nr_cpu_ids:2 nr_node_ids:1
[    0.000000] percpu: Embedded 38 pages/cpu s118784 r8192 d28672 u1048576
[    0.000000] pcpu-alloc: s118784 r8192 d28672 u1048576 alloc=1*2097152
[    0.000000] pcpu-alloc: [0] 0 1
[    0.000000] Built 1 zonelists in Node order, mobility grouping on.  Total pages: 515961
[    0.000000] Policy zone: DMA32
[    0.000000] Kernel command line: BOOT_IMAGE=/vmlinuz-3.10.0-1160.el7.x86_64 root=/dev/mapper/centos-root ro crashkernel=auto rd.lvm.lv=cento                                              s/root rd.lvm.lv=centos/swap rhgb quiet LANG=ko_KR.UTF-8
[    0.000000] PID hash table entries: 4096 (order: 3, 32768 bytes)
[    0.000000] Memory: 1848632k/2097088k available (7788k kernel code, 392k absent, 248064k reserved, 5954k data, 1984k init)
[    0.000000] SLUB: HWalign=64, Order=0-3, MinObjects=0, CPUs=2, Nodes=1
[    0.000000] x86/pti: Unmapping kernel while in userspace
[    0.000000] Hierarchical RCU implementation.
[    0.000000]  RCU restricting CPUs from NR_CPUS=5120 to nr_cpu_ids=2.
[    0.000000] NR_IRQS:327936 nr_irqs:440 0
[    0.000000] Console: colour VGA+ 80x25
[    0.000000] console [tty0] enabled
[    0.000000] allocated 54525952 bytes of page_cgroup
[    0.000000] please try 'cgroup_disable=memory' option if you don't want memory cgroups
[    0.000000] tsc: PIT calibration matches PMTIMER. 1 loops
[    0.000000] tsc: Detected 2299.524 MHz processor
[    0.001025] Calibrating delay loop (skipped), value calculated using timer frequency.. 4599.04 BogoMIPS (lpj=2299524)
[    0.001028] pid_max: default: 32768 minimum: 301
[    0.001078] Security Framework initialized
[    0.001083] SELinux:  Initializing.
[    0.001092] SELinux:  Starting in permissive mode
[    0.001093] Yama: becoming mindful.
[    0.001239] Dentry cache hash table entries: 262144 (order: 9, 2097152 bytes)
[    0.002048] Inode-cache hash table entries: 131072 (order: 8, 1048576 bytes)
[    0.002192] Mount-cache hash table entries: 4096 (order: 3, 32768 bytes)
[    0.002196] Mountpoint-cache hash table entries: 4096 (order: 3, 32768 bytes)
[    0.002382] Initializing cgroup subsys memory
[    0.002389] Initializing cgroup subsys devices
[    0.002390] Initializing cgroup subsys freezer
[    0.002392] Initializing cgroup subsys net_cls
[    0.002394] Initializing cgroup subsys blkio
[    0.002395] Initializing cgroup subsys perf_event
[    0.002398] Initializing cgroup subsys hugetlb
[    0.002399] Initializing cgroup subsys pids
[    0.002401] Initializing cgroup subsys net_prio
[    0.002581] mce: Detected Haswell CPU. MCE quirk HSD131, HSM142, HSW131, BDM48, or HSM142 enabled.
[    0.002701] Last level iTLB entries: 4KB 0, 2MB 0, 4MB 0
[    0.002703] Last level dTLB entries: 4KB 64, 2MB 0, 4MB 0
[    0.002704] tlb_flushall_shift: 6
[    0.002707] FEATURE SPEC_CTRL Not Present
[    0.002708] FEATURE IBPB_SUPPORT Not Present
[    0.002710] Spectre V1 : Mitigation: Load fences, usercopy/swapgs barriers and __user pointer sanitization
[    0.003714] Spectre V2 : Vulnerable: Retpoline without IBPB
[    0.003716] Speculative Store Bypass: Vulnerable
[    0.003810] MDS: Vulnerable: Clear CPU buffers attempted, no microcode
[    0.005270] Freeing SMP alternatives: 28k freed
[    0.028288] ACPI: Core revision 20130517
[    0.029883] ACPI: All ACPI Tables successfully acquired
[    0.030039] ftrace: allocating 29651 entries in 116 pages
[    0.058426] ..TIMER: vector=0x30 apic1=0 pin1=2 apic2=-1 pin2=-1
[    0.068479] smpboot: CPU0: Intel(R) Core(TM) i7-5500U CPU @ 2.40GHz (fam: 06, model: 3d, stepping: 04)
[    0.069000] Performance Events: unsupported p6 CPU model 61 no PMU driver, software events only.
[    0.069000] NMI watchdog: disabled (cpu0): hardware events not enabled
[    0.069000] NMI watchdog: Shutting down hard lockup detector on all cpus
[    0.069000] smpboot: Booting Node   0, Processors  #1 OK
[    0.069000] mce: Detected Haswell CPU. MCE quirk HSD131, HSM142, HSW131, BDM48, or HSM142 enabled.
[    0.086000] TSC synchronization [CPU#0 -> CPU#1]:
[    0.086000] Measured 4030 cycles TSC warp between CPUs, turning off TSC clock.
[    0.086000] tsc: Marking TSC unstable due to check_tsc_sync_source failed
[    0.086070] Brought up 2 CPUs
[    0.086072] smpboot: Max logical packages: 1
[    0.086073] smpboot: Total of 2 processors activated (9198.09 BogoMIPS)
[    0.088196] devtmpfs: initialized
[    0.088196] x86/mm: Memory block size: 128MB
[    0.090479] EVM: security.selinux
[    0.090501] EVM: security.ima
[    0.090521] EVM: security.capability
[    0.092111] atomic64 test passed for x86-64 platform with CX8 and with SSE
[    0.092118] pinctrl core: initialized pinctrl subsystem
[    0.092227] RTC time: 11:38:48, date: 07/25/23
[    0.092305] NET: Registered protocol family 16
[    0.092539] ACPI: bus type PCI registered
[    0.092541] acpiphp: ACPI Hot Plug PCI Controller Driver version: 0.5
[    0.092675] PCI: Using configuration type 1 for base access
[    0.098464] ACPI: Added _OSI(Module Device)
[    0.098466] ACPI: Added _OSI(Processor Device)
[    0.098467] ACPI: Added _OSI(3.0 _SCP Extensions)
[    0.098469] ACPI: Added _OSI(Processor Aggregator Device)
[    0.098471] ACPI: Added _OSI(Linux-Dell-Video)
[    0.098884] ACPI: EC: Look up EC in DSDT
[    0.099375] ACPI: Executed 1 blocks of module-level executable AML code
[    0.101455] ACPI: Interpreter enabled
[    0.101467] ACPI: (supports S0 S5)
[    0.101468] ACPI: Using IOAPIC for interrupt routing
[    0.101712] PCI: Using host bridge windows from ACPI; if necessary, use "pci=nocrs" and report a bug
[    0.101799] ACPI: Enabled 1 GPEs in block 00 to 07
[    0.105046] ACPI: PCI Root Bridge [PCI0] (domain 0000 [bus 00-ff])
[    0.105054] acpi PNP0A03:00: _OSC: OS supports [ASPM ClockPM Segments MSI]
[    0.105060] acpi PNP0A03:00: _OSC failed (AE_NOT_FOUND); disabling ASPM
[    0.105091] acpi PNP0A03:00: fail to add MMCONFIG information, can't access extended PCI configuration space under this bridge.
[    0.105397] PCI host bridge to bus 0000:00
[    0.105428] pci_bus 0000:00: root bus resource [io  0x0000-0x0cf7 window]
[    0.105432] pci_bus 0000:00: root bus resource [io  0x0d00-0xffff window]
[    0.105435] pci_bus 0000:00: root bus resource [mem 0x000a0000-0x000bffff window]
[    0.105437] pci_bus 0000:00: root bus resource [mem 0x80000000-0xffdfffff window]
[    0.105439] pci_bus 0000:00: root bus resource [bus 00-ff]
[    0.105494] pci 0000:00:00.0: [8086:1237] type 00 class 0x060000
[    0.106310] pci 0000:00:01.0: [8086:7000] type 00 class 0x060100
[    0.107193] pci 0000:00:01.1: [8086:7111] type 00 class 0x01018a
[    0.107755] pci 0000:00:01.1: reg 0x20: [io  0xd000-0xd00f]
[    0.108029] pci 0000:00:01.1: legacy IDE quirk: reg 0x10: [io  0x01f0-0x01f7]
[    0.108031] pci 0000:00:01.1: legacy IDE quirk: reg 0x14: [io  0x03f6]
[    0.108033] pci 0000:00:01.1: legacy IDE quirk: reg 0x18: [io  0x0170-0x0177]
[    0.108035] pci 0000:00:01.1: legacy IDE quirk: reg 0x1c: [io  0x0376]
[    0.108360] pci 0000:00:02.0: [80ee:beef] type 00 class 0x030000
[    0.109388] pci 0000:00:02.0: reg 0x10: [mem 0xe0000000-0xe0ffffff pref]
[    0.119650] pci 0000:00:03.0: [8086:100e] type 00 class 0x020000
[    0.121112] pci 0000:00:03.0: reg 0x10: [mem 0xf0000000-0xf001ffff]
[    0.123069] pci 0000:00:03.0: reg 0x18: [io  0xd010-0xd017]
[    0.128345] pci 0000:00:04.0: [80ee:cafe] type 00 class 0x088000
[    0.129062] pci 0000:00:04.0: reg 0x10: [io  0xd020-0xd03f]
[    0.130376] pci 0000:00:04.0: reg 0x14: [mem 0xf0400000-0xf07fffff]
[    0.131390] pci 0000:00:04.0: reg 0x18: [mem 0xf0800000-0xf0803fff pref]
[    0.136754] pci 0000:00:05.0: [8086:2415] type 00 class 0x040100
[    0.137078] pci 0000:00:05.0: reg 0x10: [io  0xd100-0xd1ff]
[    0.137182] pci 0000:00:05.0: reg 0x14: [io  0xd200-0xd23f]
[    0.138140] pci 0000:00:06.0: [106b:003f] type 00 class 0x0c0310
[    0.138986] pci 0000:00:06.0: reg 0x10: [mem 0xf0804000-0xf0804fff]
[    0.146026] pci 0000:00:07.0: [8086:7113] type 00 class 0x068000
[    0.146860] pci 0000:00:08.0: [8086:100e] type 00 class 0x020000
[    0.148104] pci 0000:00:08.0: reg 0x10: [mem 0xf0820000-0xf083ffff]
[    0.150069] pci 0000:00:08.0: reg 0x18: [io  0xd240-0xd247]
[    0.155272] pci 0000:00:0b.0: [8086:265c] type 00 class 0x0c0320
[    0.156055] pci 0000:00:0b.0: reg 0x10: [mem 0xf0840000-0xf0840fff]
[    0.162505] pci 0000:00:0d.0: [8086:2829] type 00 class 0x010601
[    0.163516] pci 0000:00:0d.0: reg 0x10: [io  0xd248-0xd24f]
[    0.165559] pci 0000:00:0d.0: reg 0x18: [io  0xd258-0xd25f]
[    0.168059] pci 0000:00:0d.0: reg 0x20: [io  0xd270-0xd27f]
[    0.169062] pci 0000:00:0d.0: reg 0x24: [mem 0xf0842000-0xf0843fff]
[    0.171199] ACPI: PCI Interrupt Link [LNKA] (IRQs *5 9 10 11)
[    0.171425] ACPI: PCI Interrupt Link [LNKB] (IRQs 5 9 10 *11)
[    0.171504] ACPI: PCI Interrupt Link [LNKC] (IRQs 5 9 *10 11)
[    0.171589] ACPI: PCI Interrupt Link [LNKD] (IRQs 5 *9 10 11)
[    0.172223] vgaarb: device added: PCI:0000:00:02.0,decodes=io+mem,owns=io+mem,locks=none
[    0.172223] vgaarb: loaded
[    0.172223] vgaarb: bridge control possible 0000:00:02.0
[    0.172273] SCSI subsystem initialized
[    0.172321] ACPI: bus type USB registered
[    0.172348] usbcore: registered new interface driver usbfs
[    0.172370] usbcore: registered new interface driver hub
[    0.172415] usbcore: registered new device driver usb
[    0.173079] EDAC MC: Ver: 3.0.0
[    0.173397] PCI: Using ACPI for IRQ routing
[    0.173397] PCI: pci_cache_line_size set to 64 bytes
[    0.173397] e820: reserve RAM buffer [mem 0x0009fc00-0x0009ffff]
[    0.173397] e820: reserve RAM buffer [mem 0x7fff0000-0x7fffffff]
[    0.174020] NetLabel: Initializing
[    0.174021] NetLabel:  domain hash size = 128
[    0.174022] NetLabel:  protocols = UNLABELED CIPSOv4
[    0.174036] NetLabel:  unlabeled traffic allowed by default
[    0.174116] amd_nb: Cannot enumerate AMD northbridges
[    0.174156] Switched to clocksource refined-jiffies
[    0.179635] pnp: PnP ACPI init
[    0.179649] ACPI: bus type PNP registered
[    0.179731] pnp 00:00: Plug and Play ACPI device, IDs PNP0303 (active)
[    0.179810] pnp 00:01: Plug and Play ACPI device, IDs PNP0f03 (active)
[    0.179856] pnp 00:02: Plug and Play ACPI device, IDs PNP0400 (active)
[    0.179999] pnp: PnP ACPI: found 3 devices
[    0.179999] ACPI: bus type PNP unregistered
[    0.192421] Switched to clocksource acpi_pm
[    0.192438] pci_bus 0000:00: resource 4 [io  0x0000-0x0cf7 window]
[    0.192444] pci_bus 0000:00: resource 5 [io  0x0d00-0xffff window]
[    0.192449] pci_bus 0000:00: resource 6 [mem 0x000a0000-0x000bffff window]
[    0.192454] pci_bus 0000:00: resource 7 [mem 0x80000000-0xffdfffff window]
[    0.192485] NET: Registered protocol family 2
[    0.192636] TCP established hash table entries: 16384 (order: 5, 131072 bytes)
[    0.192636] TCP bind hash table entries: 16384 (order: 6, 262144 bytes)
[    0.192636] TCP: Hash tables configured (established 16384 bind 16384)
[    0.192636] TCP: reno registered
[    0.192636] UDP hash table entries: 1024 (order: 3, 32768 bytes)
[    0.192636] UDP-Lite hash table entries: 1024 (order: 3, 32768 bytes)
[    0.192636] NET: Registered protocol family 1
[    0.192636] pci 0000:00:00.0: Limiting direct PCI/PCI transfers
[    0.192636] pci 0000:00:01.0: Activating ISA DMA hang workarounds
[    0.192636] pci 0000:00:02.0: Boot video device
[    0.194423] PCI: CLS 0 bytes, default 64
[    0.194469] Unpacking initramfs...
[    0.651699] Freeing initrd memory: 30684k freed
[    0.655739] RAPL PMU: API unit is 2^-32 Joules, 4 fixed counters, 10737418240 ms ovfl timer
[    0.655741] RAPL PMU: hw unit of domain pp0-core 2^-0 Joules
[    0.655743] RAPL PMU: hw unit of domain package 2^-0 Joules
[    0.655744] RAPL PMU: hw unit of domain dram 2^-0 Joules
[    0.655745] RAPL PMU: hw unit of domain pp1-gpu 2^-0 Joules
[    0.655902] platform rtc_cmos: registered platform RTC device (no PNP device found)
[    0.657191] sha1_ssse3: Using SSSE3 optimized SHA-1 implementation
[    0.657455] sha256_ssse3: Using SSSE3 optimized SHA-256 implementation
[    0.658413] futex hash table entries: 512 (order: 3, 32768 bytes)
[    0.658427] Initialise system trusted keyring
[    0.658459] audit: initializing netlink socket (disabled)
[    0.658474] type=2000 audit(1690285128.657:1): initialized
[    0.684124] HugeTLB registered 2 MB page size, pre-allocated 0 pages
[    0.686101] zpool: loaded
[    0.686105] zbud: loaded
[    0.686475] VFS: Disk quotas dquot_6.5.2
[    0.686503] Dquot-cache hash table entries: 512 (order 0, 4096 bytes)
[    0.686780] Key type big_key registered
[    0.686783] SELinux:  Registering netfilter hooks
[    0.690632] NET: Registered protocol family 38
[    0.690641] Key type asymmetric registered
[    0.690644] Asymmetric key parser 'x509' registered
[    0.690690] Block layer SCSI generic (bsg) driver version 0.4 loaded (major 248)
[    0.690729] io scheduler noop registered
[    0.690732] io scheduler deadline registered (default)
[    0.690759] io scheduler cfq registered
[    0.690763] io scheduler mq-deadline registered
[    0.690766] io scheduler kyber registered
[    0.690916] pci_hotplug: PCI Hot Plug PCI Core version: 0.5
[    0.690924] pciehp: PCI Express Hot Plug Controller Driver version: 0.4
[    0.690939] shpchp: Standard Hot Plug PCI Controller Driver version: 0.4
[    0.691040] intel_idle: does not run on family 6 model 61
[    0.691132] ACPI: AC Adapter [AC] (on-line)
[    0.691227] input: Power Button as /devices/LNXSYSTM:00/LNXPWRBN:00/input/input0
[    0.691232] ACPI: Power Button [PWRF]
[    0.691329] input: Sleep Button as /devices/LNXSYSTM:00/LNXSLPBN:00/input/input1
[    0.691332] ACPI: Sleep Button [SLPF]
[    0.691507] GHES: HEST is not enabled!
[    0.691690] Serial: 8250/16550 driver, 4 ports, IRQ sharing enabled
[    0.692572] ACPI: Battery Slot [BAT0] (battery present)
[    0.693492] Non-volatile memory driver v1.3
[    0.693618] Linux agpgart interface v0.103
[    0.693880] crash memory driver: version 1.1
[    0.693945] rdac: device handler registered
[    0.694172] hp_sw: device handler registered
[    0.694175] emc: device handler registered
[    0.694262] alua: device handler registered
[    0.694374] libphy: Fixed MDIO Bus: probed
[    0.694489] ehci_hcd: USB 2.0 'Enhanced' Host Controller (EHCI) Driver
[    0.694493] ehci-pci: EHCI PCI platform driver
[    0.695143] ehci-pci 0000:00:0b.0: EHCI Host Controller
[    0.695280] ehci-pci 0000:00:0b.0: new USB bus registered, assigned bus number 1
[    0.695588] ehci-pci 0000:00:0b.0: irq 19, io mem 0xf0840000
[    0.701733] ehci-pci 0000:00:0b.0: USB 2.0 started, EHCI 1.00
[    0.701927] usb usb1: New USB device found, idVendor=1d6b, idProduct=0002, bcdDevice= 3.10
[    0.701937] usb usb1: New USB device strings: Mfr=3, Product=2, SerialNumber=1
[    0.701947] usb usb1: Product: EHCI Host Controller
[    0.701955] usb usb1: Manufacturer: Linux 3.10.0-1160.el7.x86_64 ehci_hcd
[    0.701965] usb usb1: SerialNumber: 0000:00:0b.0
[    0.702358] hub 1-0:1.0: USB hub found
[    0.702369] hub 1-0:1.0: 8 ports detected
[    0.702600] ohci_hcd: USB 1.1 'Open' Host Controller (OHCI) Driver
[    0.702608] ohci-pci: OHCI PCI platform driver
[    0.703055] ohci-pci 0000:00:06.0: OHCI PCI host controller
[    0.703273] ohci-pci 0000:00:06.0: new USB bus registered, assigned bus number 2
[    0.703349] ohci-pci 0000:00:06.0: irq 22, io mem 0xf0804000
[    0.754951] usb usb2: New USB device found, idVendor=1d6b, idProduct=0001, bcdDevice= 3.10
[    0.754962] usb usb2: New USB device strings: Mfr=3, Product=2, SerialNumber=1
[    0.754972] usb usb2: Product: OHCI PCI host controller
[    0.754980] usb usb2: Manufacturer: Linux 3.10.0-1160.el7.x86_64 ohci_hcd
[    0.754989] usb usb2: SerialNumber: 0000:00:06.0
[    0.755366] hub 2-0:1.0: USB hub found
[    0.755384] hub 2-0:1.0: 8 ports detected
[    0.755840] uhci_hcd: USB Universal Host Controller Interface driver
[    0.755904] usbcore: registered new interface driver usbserial_generic
[    0.755911] usbserial: USB Serial support registered for generic
[    0.755958] i8042: PNP: PS/2 Controller [PNP0303:PS2K,PNP0f03:PS2M] at 0x60,0x64 irq 1,12
[    1.404025] serio: i8042 KBD port at 0x60,0x64 irq 1
[    1.404025] serio: i8042 AUX port at 0x60,0x64 irq 12
[    1.404895] mousedev: PS/2 mouse device common for all mice
[    1.405474] input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input2
[    1.407307] rtc_cmos rtc_cmos: rtc core: registered rtc_cmos as rtc0
[    1.407418] rtc_cmos rtc_cmos: alarms up to one day, 114 bytes nvram
[    1.407512] cpuidle: using governor menu
[    1.407632] hidraw: raw HID events driver (C) Jiri Kosina
[    1.407802] usbcore: registered new interface driver usbhid
[    1.407804] usbhid: USB HID core driver
[    1.407882] drop_monitor: Initializing network drop monitor service
[    1.407956] TCP: cubic registered
[    1.407962] Initializing XFRM netlink socket
[    1.408165] NET: Registered protocol family 10
[    1.408500] NET: Registered protocol family 17
[    1.408513] mpls_gso: MPLS GSO support
[    1.409182] mce: Using 0 MCE banks
[    1.409447] microcode: sig=0x306d4, pf=0x1, revision=0x0
[    1.409710] microcode: Microcode Update Driver: v2.01 <tigran@aivazian.fsnet.co.uk>, Peter Oruba
[    1.410295] PM: Hibernation image not present or could not be loaded.
[    1.410300] Loading compiled-in X.509 certificates
[    1.410326] Loaded X.509 cert 'CentOS Linux kpatch signing key: ea0413152cde1d98ebdca3fe6f0230904c9ef717'
[    1.410348] Loaded X.509 cert 'CentOS Linux Driver update signing key: 7f421ee0ab69461574bb358861dbe77762a4201b'
[    1.410934] Loaded X.509 cert 'CentOS Linux kernel signing key: e1fdb0e2a7e861a1d1ca80a23dcf0dba3aa4adf5'
[    1.410969] registered taskstats version 1
[    1.410994] page_owner is disabled
[    1.414524] Key type trusted registered
[    1.417775] Key type encrypted registered
[    1.417800] IMA: No TPM chip found, activating TPM-bypass! (rc=-19)
[    1.417877] BERT: Boot Error Record Table support is disabled. Enable it by using bert_enable as kernel parameter.
[    1.418197]   Magic number: 15:631:631
[    1.418349] rtc_cmos rtc_cmos: setting system clock to 2023-07-25 11:38:49 UTC (1690285129)
[    1.419159] Freeing unused kernel memory: 1984k freed
[    1.419448] Write protecting the kernel read-only data: 12288k
[    1.420837] Freeing unused kernel memory: 392k freed
[    1.422028] Freeing unused kernel memory: 536k freed
[    1.426305] random: systemd: uninitialized urandom read (16 bytes read)
[    1.427161] random: systemd: uninitialized urandom read (16 bytes read)
[    1.427180] random: systemd: uninitialized urandom read (16 bytes read)
[    1.428244] systemd[1]: systemd 219 running in system mode. (+PAM +AUDIT +SELINUX +IMA -APPARMOR +SMACK +SYSVINIT +UTMP +LIBCRYPTSETUP +GCRY                                              PT +GNUTLS +ACL +XZ +LZ4 -SECCOMP +BLKID +ELFUTILS +KMOD +IDN)
[    1.428349] systemd[1]: Detected virtualization oracle.
[    1.428361] systemd[1]: Detected architecture x86-64.
[    1.428365] systemd[1]: Running in initial RAM disk.
[    1.428403] systemd[1]: Set hostname to <localhost.localdomain>.
[    1.470958] random: systemd: uninitialized urandom read (16 bytes read)
[    1.470981] random: systemd: uninitialized urandom read (16 bytes read)
[    1.471012] random: systemd: uninitialized urandom read (16 bytes read)
[    1.471104] random: systemd: uninitialized urandom read (16 bytes read)
[    1.471839] random: systemd: uninitialized urandom read (16 bytes read)
[    1.471968] random: systemd: uninitialized urandom read (16 bytes read)
[    1.472415] random: systemd: uninitialized urandom read (16 bytes read)
[    1.477683] systemd[1]: Reached target Timers.
[    1.477761] systemd[1]: Reached target Local File Systems.
[    1.477816] systemd[1]: Reached target Swap.
[    1.478102] systemd[1]: Created slice Root Slice.
[    1.478176] systemd[1]: Listening on udev Control Socket.
[    1.478231] systemd[1]: Listening on udev Kernel Socket.
[    1.478312] systemd[1]: Listening on Journal Socket.
[    1.478351] systemd[1]: Reached target Sockets.
[    1.478455] systemd[1]: Created slice System Slice.
[    1.479077] systemd[1]: Starting Create list of required static device nodes for the current kernel...
[    1.479807] systemd[1]: Starting Load Kernel Modules...
[    1.480335] systemd[1]: Starting Journal Service...
[    1.481113] systemd[1]: Starting dracut cmdline hook...
[    1.481159] systemd[1]: Reached target Slices.
[    1.481708] systemd[1]: Starting Setup Virtual Console...
[    1.482974] systemd[1]: Started Create list of required static device nodes for the current kernel.
[    1.484761] systemd[1]: Starting Create Static Device Nodes in /dev...
[    1.495909] systemd[1]: Started Create Static Device Nodes in /dev.
[    1.520273] systemd[1]: Started Journal Service.
[    1.596816] fuse init (API version 7.23)
[    1.611308] input: ImExPS/2 Generic Explorer Mouse as /devices/platform/i8042/serio1/input/input3
[    1.694892] device-mapper: uevent: version 1.0.3
[    1.695414] device-mapper: ioctl: 4.37.1-ioctl (2018-04-03) initialised: dm-devel@redhat.com
[    1.822208] e1000: Intel(R) PRO/1000 Network Driver - version 7.3.21-k8-NAPI
[    1.822210] e1000: Copyright (c) 1999-2006 Intel Corporation.
[    1.874614] libata version 3.00 loaded.
[    2.311587] e1000 0000:00:03.0 eth0: (PCI:33MHz:32-bit) 08:00:27:0b:70:b6
[    2.311595] e1000 0000:00:03.0 eth0: Intel(R) PRO/1000 Network Connection
[    2.771475] e1000 0000:00:08.0 eth1: (PCI:33MHz:32-bit) 08:00:27:c0:eb:ac
[    2.771480] e1000 0000:00:08.0 eth1: Intel(R) PRO/1000 Network Connection
[    2.771506] ata_piix 0000:00:01.1: version 2.13
[    2.772824] scsi host0: ata_piix
[    2.772910] scsi host1: ata_piix
[    2.772946] ata1: PATA max UDMA/33 cmd 0x1f0 ctl 0x3f6 bmdma 0xd000 irq 14
[    2.772948] ata2: PATA max UDMA/33 cmd 0x170 ctl 0x376 bmdma 0xd008 irq 15
[    2.773886] ahci 0000:00:0d.0: version 3.0
[    2.774455] ahci 0000:00:0d.0: SSS flag set, parallel bus scan disabled
[    2.774674] ahci 0000:00:0d.0: AHCI 0001.0100 32 slots 1 ports 3 Gbps 0x1 impl SATA mode
[    2.774678] ahci 0000:00:0d.0: flags: 64bit ncq stag only ccc
[    2.775497] scsi host2: ahci
[    2.775576] ata3: SATA max UDMA/133 abar m8192@0xf0842000 port 0xf0842100 irq 21
[    2.929507] ata2.00: ATAPI: VBOX CD-ROM, 1.0, max UDMA/133
[    2.932067] ata2.00: configured for UDMA/33
[    2.936988] scsi 1:0:0:0: CD-ROM            VBOX     CD-ROM           1.0  PQ: 0 ANSI: 5
[    3.081788] ata3: SATA link up 3.0 Gbps (SStatus 123 SControl 300)
[    3.082382] ata3.00: ATA-6: VBOX HARDDISK, 1.0, max UDMA/133
[    3.082395] ata3.00: 16777216 sectors, multi 128: LBA48 NCQ (depth 31/32)
[    3.082871] ata3.00: configured for UDMA/133
[    3.084425] scsi 2:0:0:0: Direct-Access     ATA      VBOX HARDDISK    1.0  PQ: 0 ANSI: 5
[    3.139141] sr 1:0:0:0: [sr0] scsi3-mmc drive: 32x/32x xa/form2 tray
[    3.139146] cdrom: Uniform CD-ROM driver Revision: 3.20
[    3.139705] sr 1:0:0:0: Attached scsi CD-ROM sr0
[    3.141539] sd 2:0:0:0: [sda] 16777216 512-byte logical blocks: (8.58 GB/8.00 GiB)
[    3.141991] sd 2:0:0:0: [sda] Write Protect is off
[    3.141996] sd 2:0:0:0: [sda] Mode Sense: 00 3a 00 00
[    3.142133] sd 2:0:0:0: [sda] Write cache: enabled, read cache: enabled, doesn't support DPO or FUA
[    3.144511]  sda: sda1 sda2
[    3.145636] sd 2:0:0:0: [sda] Attached SCSI disk
[    3.243725] random: fast init done
[    3.822303] SGI XFS with ACLs, security attributes, no debug enabled
[    3.826513] XFS (dm-0): Mounting V5 Filesystem
[    4.067917] XFS (dm-0): Starting recovery (logdev: internal)
[    4.196316] XFS (dm-0): Ending recovery (logdev: internal)
[    4.419348] random: crng init done
[    4.915069] systemd-journald[97]: Received SIGTERM from PID 1 (systemd).
[    6.034844] type=1404 audit(1690285134.115:2): enforcing=1 old_enforcing=0 auid=4294967295 ses=4294967295
[    6.237942] SELinux: 2048 avtab hash slots, 112730 rules.
[    6.353716] SELinux: 2048 avtab hash slots, 112730 rules.
[    6.419320] SELinux:  8 users, 14 roles, 5046 types, 316 bools, 1 sens, 1024 cats
[    6.419329] SELinux:  130 classes, 112730 rules
[    6.426481] SELinux:  Completing initialization.
[    6.426485] SELinux:  Setting up existing superblocks.
[    6.438467] type=1403 audit(1690285134.519:3): policy loaded auid=4294967295 ses=4294967295
[    6.497073] systemd[1]: Successfully loaded SELinux policy in 465.396ms.
[    7.529607] ip_tables: (C) 2000-2006 Netfilter Core Team
[    7.529858] systemd[1]: Inserted module 'ip_tables'
[    7.555304] systemd[1]: Relabelled /dev, /run and /sys/fs/cgroup in 21.045ms.
[   12.967353] systemd-journald[489]: Received request to flush runtime journal from PID 1
[   16.227077] piix4_smbus 0000:00:07.0: SMBus base address uninitialized - upgrade BIOS or use force_addr=0xaddr
[   16.476191] sr 1:0:0:0: Attached scsi generic sg0 type 5
[   16.476262] sd 2:0:0:0: Attached scsi generic sg1 type 0
[   16.484305] parport_pc 00:02: reported by Plug and Play ACPI
[   16.593555] input: PC Speaker as /devices/platform/pcspkr/input/input4
[   17.362495] ppdev: user-space parallel port driver
[   17.757024] Adding 839676k swap on /dev/mapper/centos-swap.  Priority:-2 extents:1 across:839676k FS
[   18.034152] snd_intel8x0 0000:00:05.0: intel8x0_measure_ac97_clock: measured 51131 usecs (9432 samples)
[   18.034157] snd_intel8x0 0000:00:05.0: measured clock 184467 rejected
[   18.123765] XFS (sda1): Mounting V5 Filesystem
[   18.311866] XFS (sda1): Starting recovery (logdev: internal)
[   18.343939] XFS (sda1): Ending recovery (logdev: internal)
[   18.386363] snd_intel8x0 0000:00:05.0: intel8x0_measure_ac97_clock: measured 51065 usecs (6720 samples)
[   18.386407] snd_intel8x0 0000:00:05.0: measured clock 131596 rejected
[   18.738353] snd_intel8x0 0000:00:05.0: intel8x0_measure_ac97_clock: measured 50793 usecs (7200 samples)
[   18.738363] snd_intel8x0 0000:00:05.0: measured clock 141751 rejected
[   18.738370] snd_intel8x0 0000:00:05.0: clocking to 48000
[   19.327973] floppy0: no floppy controllers found
[   20.057340] RPC: Registered named UNIX socket transport module.
[   20.057343] RPC: Registered udp transport module.
[   20.057345] RPC: Registered tcp transport module.
[   20.057346] RPC: Registered tcp NFSv4.1 backchannel transport module.
[   20.271184] type=1305 audit(1690285148.352:4): audit_pid=635 old=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:auditd_t:s0 res=1
[   37.665535] ip6_tables: (C) 2000-2006 Netfilter Core Team
[   38.287432] Ebtables v2.0 registered
[   38.589997] Netfilter messages via NETLINK v0.30.
[   38.710543] ip_set: protocol 7
[   38.908546] IPv6: ADDRCONF(NETDEV_UP): enp0s3: link is not ready
[   38.911126] e1000: enp0s3 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[   38.912038] IPv6: ADDRCONF(NETDEV_UP): enp0s3: link is not ready
[   38.912033] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s3: link becomes ready
[   38.924826] IPv6: ADDRCONF(NETDEV_UP): enp0s8: link is not ready
[   38.928315] e1000: enp0s8 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[   38.928887] IPv6: ADDRCONF(NETDEV_UP): enp0s8: link is not ready
[   38.928898] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s8: link becomes ready
[   39.517759] nf_conntrack version 0.5.0 (16384 buckets, 65536 max)
[   39.753155] bridge: filtering via arp/ip/ip6tables is no longer available by default. Update your scripts to load br_netfilter if you need t                                              his.
[   43.034352] hrtimer: interrupt took 3977367 ns
[   56.610443] tun: Universal TUN/TAP device driver, 1.6
[   56.610446] tun: (C) 1999-2004 Max Krasnyansky <maxk@qualcomm.com>
[   56.614404] virbr0: port 1(virbr0-nic) entered blocking state
[   56.614408] virbr0: port 1(virbr0-nic) entered disabled state
[   56.614450] device virbr0-nic entered promiscuous mode
[   56.948362] virbr0: port 1(virbr0-nic) entered blocking state
[   56.948366] virbr0: port 1(virbr0-nic) entered listening state
[   56.948406] IPv6: ADDRCONF(NETDEV_UP): virbr0: link is not ready
[   57.088897] virbr0: port 1(virbr0-nic) entered disabled state
[  136.154273] ISO 9660 Extensions: Microsoft Joliet Level 3
[  136.470720] ISO 9660 Extensions: RRIP_1991A
[  153.184383] TCP: lp registered
[ 1035.980718] e1000 0000:00:03.0 enp0s3: Detected Tx Unit Hang
  Tx Queue             <0>
  TDH                  <7c>
  TDT                  <7e>
  next_to_use          <7e>
  next_to_clean        <7c>
buffer_info[next_to_clean]
  time_stamp           <1000b368a>
  next_to_watch        <7d>
  jiffies              <1000b3aed>
  next_to_watch.status <0>
[ 1037.983629] e1000 0000:00:03.0 enp0s3: Detected Tx Unit Hang
  Tx Queue             <0>
  TDH                  <7c>
  TDT                  <7e>
  next_to_use          <7e>
  next_to_clean        <7c>
buffer_info[next_to_clean]
  time_stamp           <1000b368a>
  next_to_watch        <7d>
  jiffies              <1000b42c0>
  next_to_watch.status <0>
[ 1039.987568] e1000 0000:00:03.0 enp0s3: Detected Tx Unit Hang
  Tx Queue             <0>
  TDH                  <7c>
  TDT                  <7e>
  next_to_use          <7e>
  next_to_clean        <7c>
buffer_info[next_to_clean]
  time_stamp           <1000b368a>
  next_to_watch        <7d>
  jiffies              <1000b4a94>
  next_to_watch.status <0>
[ 1041.991488] e1000 0000:00:03.0 enp0s3: Detected Tx Unit Hang
  Tx Queue             <0>
  TDH                  <7c>
  TDT                  <7e>
  next_to_use          <7e>
  next_to_clean        <7c>
buffer_info[next_to_clean]
  time_stamp           <1000b368a>
  next_to_watch        <7d>
  jiffies              <1000b5268>
  next_to_watch.status <0>
[ 1043.711841] ------------[ cut here ]------------
[ 1043.711950] WARNING: CPU: 0 PID: 0 at net/sched/sch_generic.c:356 dev_watchdog+0x248/0x260
[ 1043.711987] NETDEV WATCHDOG: enp0s3 (e1000): transmit queue 0 timed out
[ 1043.712013] Modules linked in: tcp_lp nls_utf8 isofs xt_CHECKSUM ipt_MASQUERADE nf_nat_masquerade_ipv4 tun devlink ip6t_rpfilter ip6t_REJECT                                               nf_reject_ipv6 ipt_REJECT nf_reject_ipv4 xt_conntrack ebtable_nat ebtable_broute bridge stp llc ip6table_nat nf_conntrack_ipv6 nf_defrag_ipv6                                               nf_nat_ipv6 ip6table_mangle ip6table_security ip6table_raw iptable_nat nf_conntrack_ipv4 nf_defrag_ipv4 nf_nat_ipv4 nf_nat iptable_mangle iptab                                              le_security iptable_raw nf_conntrack ip_set nfnetlink ebtable_filter ebtables ip6table_filter ip6_tables iptable_filter sunrpc snd_intel8x0 ppd                                              ev snd_ac97_codec ac97_bus snd_seq snd_seq_device snd_pcm snd_timer pcspkr snd iosf_mbi parport_pc sg soundcore parport i2c_piix4 ip_tables xfs                                               libcrc32c sd_mod sr_mod cdrom crc_t10dif crct10dif_generic crct10dif_common ata_generic pata_acpi
[ 1043.712100]  ahci libahci ata_piix serio_raw libata e1000 dm_mirror dm_region_hash dm_log dm_mod fuse
[ 1043.712146] CPU: 0 PID: 0 Comm: swapper/0 Kdump: loaded Not tainted 3.10.0-1160.el7.x86_64 #1
[ 1043.712169] Hardware name: innotek GmbH VirtualBox/VirtualBox, BIOS VirtualBox 12/01/2006
[ 1043.712193] Call Trace:
[ 1043.712222]  <IRQ>  [<ffffffffbd781340>] dump_stack+0x19/0x1b
[ 1043.712264]  [<ffffffffbd09b228>] __warn+0xd8/0x100
[ 1043.712301]  [<ffffffffbd09b2af>] warn_slowpath_fmt+0x5f/0x80
[ 1043.712328]  [<ffffffffbd0bbb9c>] ? __queue_work+0x13c/0x3f0
[ 1043.712363]  [<ffffffffbd6822f8>] dev_watchdog+0x248/0x260
[ 1043.712390]  [<ffffffffbd6820b0>] ? dev_deactivate_queue.constprop.27+0x60/0x60
[ 1043.712415]  [<ffffffffbd0abd58>] call_timer_fn+0x38/0x110
[ 1043.712439]  [<ffffffffbd6820b0>] ? dev_deactivate_queue.constprop.27+0x60/0x60
[ 1043.712465]  [<ffffffffbd0ae1ed>] run_timer_softirq+0x24d/0x300
[ 1043.712490]  [<ffffffffbd0a4b95>] __do_softirq+0xf5/0x280
[ 1043.712515]  [<ffffffffbd7974ec>] call_softirq+0x1c/0x30
[ 1043.712540]  [<ffffffffbd02f715>] do_softirq+0x65/0xa0
[ 1043.712564]  [<ffffffffbd0a4f15>] irq_exit+0x105/0x110
[ 1043.712588]  [<ffffffffbd798a88>] smp_apic_timer_interrupt+0x48/0x60
[ 1043.712613]  [<ffffffffbd794fba>] apic_timer_interrupt+0x16a/0x170
[ 1043.712636]  <EOI>  [<ffffffffbd789000>] ? __cpuidle_text_start+0x8/0x8
[ 1043.712642]  [<ffffffffbd78924b>] ? native_safe_halt+0xb/0x20
[ 1043.712642]  [<ffffffffbd78901e>] default_idle+0x1e/0xc0
[ 1043.712642]  [<ffffffffbd037ca0>] arch_cpu_idle+0x20/0xc0
[ 1043.712642]  [<ffffffffbd1011ea>] cpu_startup_entry+0x14a/0x1e0
[ 1043.712642]  [<ffffffffbd76f9c7>] rest_init+0x77/0x80
[ 1043.712642]  [<ffffffffbdd8b1cf>] start_kernel+0x44b/0x46c
[ 1043.712642]  [<ffffffffbdd8ab84>] ? repair_env_string+0x5c/0x5c
[ 1043.712642]  [<ffffffffbdd8a120>] ? early_idt_handler_array+0x120/0x120
[ 1043.712642]  [<ffffffffbdd8a738>] x86_64_start_reservations+0x24/0x26
[ 1043.712642]  [<ffffffffbdd8a88e>] x86_64_start_kernel+0x154/0x177
[ 1043.712642]  [<ffffffffbd0000d5>] start_cpu+0x5/0x14
[ 1043.712642] ---[ end trace a74c33bbf984cef4 ]---
[ 1043.712642] e1000 0000:00:03.0 enp0s3: Reset adapter
[ 1043.757606] e1000: enp0s3 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
[ 3522.082921] xt_recent: hitcount (30) is larger than packets to be remembered (20)
[ 3597.329414] xt_recent: hitcount (30) is larger than packets to be remembered (20)
[root@centos ~]# date
2023. 07. 25. (화) 21:41:21 KST
[root@centos ~]#

[root@centos ~]# iptables -A INPUT -p TCP --syn --dport 80  -m recent  --update  --seconds 2  --hitcount 20  --name SYN_DROP  -j DROP
[root@centos ~]# iptables -nL
Chain INPUT (policy ACCEPT)
target     prot opt source               destination
ACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0            udp dpt:53
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:53
ACCEPT     udp  --  0.0.0.0/0            0.0.0.0/0            udp dpt:67
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:67
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0            ctstate RELATED,ESTABLISHED
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0
INPUT_direct  all  --  0.0.0.0/0            0.0.0.0/0
INPUT_ZONES_SOURCE  all  --  0.0.0.0/0            0.0.0.0/0
INPUT_ZONES  all  --  0.0.0.0/0            0.0.0.0/0
DROP       all  --  0.0.0.0/0            0.0.0.0/0            ctstate INVALID
REJECT     all  --  0.0.0.0/0            0.0.0.0/0            reject-with icmp-host-prohibited
DROP       tcp  --  0.0.0.0/0            0.0.0.0/0            tcp dpt:80 flags:0x17/0x02 recent: UPDATE seconds: 2 hit_count: 20 name: SYN_DROP side: source mask: 255.255.255.255

'정보보안기사 > linux' 카테고리의 다른 글

[실습] iptables #2 (0)	2023.07.27
[실습] http #2 (0)	2023.07.26
[실습] snort (0)	2023.07.25
[실습] tcp wrapper (0)	2023.07.24
[실습] sendmail (0)	2023.07.24

현재글[실습] iptables (--name -j)

멋쟁이천재사자

Salesforce Data Cloud 공부중입니다.

oracle, ADsP, ADP실기27회, 정보처리기사, 정보기 실기, 오류해결, SQL, 정보기실기, 빅분기, ADP실기26회, ADP실기풀이, 정보관리기술사, r, ADP, 기술사, 빅데이터분석기사, 우연성 검정, cdw, 정보보안기사, ADP실기,

Today :
Yesterday :

멋쟁이천재사자