Problem mit Fail2ban Fatal Error

[LeonP]

Hallo Community,
Ich habe auf meinem Debian 6.0 Server ein größeres Problem mit fail2ban.
Auf dem Server läuft Plesk daher habe ich die Fail2Ban.Config und jail.conf angepasst und die log fads geändert.
Allerdings egal ob standard Config oder nicht (Fail2ban.conf , jail.conf)
Bekomme ich in der Log immer folgende Meldung:

2012-08-07 17:52:18,312 fail2ban.actions.action: ERROR iptables -D INPUT -p tcp -m multiport --dports ssh -j fail2ban-ssh
iptables -F fail2ban-ssh
iptables -X fail2ban-ssh returned 100
2012-08-07 17:52:18,312 fail2ban.jail : INFO Jail 'ssh' stopped
2012-08-07 17:52:18,313 fail2ban.server : INFO Exiting Fail2ban
2012-08-07 17:52:28,478 fail2ban.server : INFO Changed logging target to /var/log/fail2ban.log for Fail2ban v0.8.4-SVN
2012-08-07 17:52:28,479 fail2ban.jail : INFO Creating new jail 'ssh'
2012-08-07 17:52:28,479 fail2ban.jail : INFO Jail 'ssh' uses poller
2012-08-07 17:52:28,491 fail2ban.filter : INFO Added logfile = /var/log/auth.log
2012-08-07 17:52:28,492 fail2ban.filter : INFO Set maxRetry = 6
2012-08-07 17:52:28,493 fail2ban.filter : INFO Set findtime = 600
2012-08-07 17:52:28,493 fail2ban.actions: INFO Set banTime = 600
2012-08-07 17:52:28,558 fail2ban.jail : INFO Jail 'ssh' started
2012-08-07 17:53:59,667 fail2ban.actions: WARNING [ssh] Banmeine ip
2012-08-07 17:55:01,729 fail2ban.actions: WARNING [ssh] meine ip already banned
2012-08-07 17:57:28,870 fail2ban.actions: WARNING [ssh] Unban meine ip
2012-08-07 17:57:28,887 fail2ban.jail : INFO Jail 'ssh' stopped
2012-08-07 17:57:28,887 fail2ban.server : INFO Exiting Fail2ban
2012-08-07 17:57:29,160 fail2ban.server : INFO Changed logging target to /var/log/fail2ban.log for Fail2ban v0.8.4-SVN
2012-08-07 17:57:29,160 fail2ban.jail : INFO Creating new jail 'ssh'
2012-08-07 17:57:29,160 fail2ban.jail : INFO Jail 'ssh' uses poller
2012-08-07 17:57:29,172 fail2ban.filter : INFO Added logfile = /var/log/auth.log
2012-08-07 17:57:29,172 fail2ban.filter : INFO Set maxRetry = 6
2012-08-07 17:57:29,173 fail2ban.filter : INFO Set findtime = 600
2012-08-07 17:57:29,174 fail2ban.actions: INFO Set banTime = 600
2012-08-07 17:57:29,235 fail2ban.jail : INFO Jail 'ssh' started

Hauütsächlich geht es um:
fail2ban.actions.action: ERROR iptables -D INPUT -p tcp -m multiport --dports ssh -j fail2ban-ssh

Gebe ich iptables -L -v kriege ich folgende Meldung:

root@server:~# iptables -L -v
Chain INPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 fail2ban-ssh tcp -- any any anywhere anywhere FATAL: Could not load /lib/modules/2.6.32-042stab053.5/modules.dep: No such file or directory
multiport dports ssh
814 96175 ACCEPT all -- any any anywhere anywhere state RELATED,ESTABLISHED
7 280 REJECT tcp -- any any anywhere anywhere tcp flags:!FIN,SYN,RST,ACK/SYN reject-with tcp-reset
0 0 DROP all -- any any anywhere anywhere state INVALID
2 120 ACCEPT all -- lo any anywhere anywhere
9 468 ACCEPT tcp -- any any anywhere anywhere tcp dpt:40245
0 0 DROP tcp -- any any anywhere anywhere tcp dpt:12443
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:11443
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:11444
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:8447
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:8443
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:8880
5 248 ACCEPT tcp -- any any anywhere anywhere tcp dpt:www
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:https
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:ftp
0 0 DROP tcp -- any any anywhere anywhere tcp dpt:ssh
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:submission
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:smtp
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:ssmtp
2 104 ACCEPT tcp -- any any anywhere anywhere tcp dpt:pop3
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:pop3s
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:imap2
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:imaps
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:poppassd
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:mysql
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:postgresql
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:9008
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:9080
0 0 DROP udp -- any any anywhere anywhere udp dpt:netbios-ns
0 0 DROP udp -- any any anywhere anywhere udp dpt:netbios-dgm
0 0 DROP tcp -- any any anywhere anywhere tcp dpt:netbios-ssn
0 0 DROP tcp -- any any anywhere anywhere tcp dpt:microsoft-ds
0 0 DROP udp -- any any anywhere anywhere udp dpt:openvpn
0 0 ACCEPT udp -- any any anywhere anywhere udp dpt:domain
0 0 ACCEPT tcp -- any any anywhere anywhere tcp dpt:domain
0 0 ACCEPT udp -- any any anywhere anywhere
0 0 ACCEPT tcp -- any any anywhere anywhere
0 0 DROP icmp -- any any anywhere anywhere icmp type 8 code 0
0 0 DROP all -- any any anywhere anywhere

Chain FORWARD (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- any any anywhere anywhere state RELATED,ESTABLISHED
0 0 REJECT tcp -- any any anywhere anywhere tcp flags:!FIN,SYN,RST,ACK/SYN reject-with tcp-reset
0 0 DROP all -- any any anywhere anywhere state INVALID
0 0 ACCEPT all -- lo lo anywhere anywhere
0 0 DROP all -- any any anywhere anywhere

Chain OUTPUT (policy DROP 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
745 198K ACCEPT all -- any any anywhere anywhere state RELATED,ESTABLISHED
6 240 REJECT tcp -- any any anywhere anywhere tcp flags:!FIN,SYN,RST,ACK/SYN reject-with tcp-reset
0 0 DROP all -- any any anywhere anywhere state INVALID
2 120 ACCEPT all -- any lo anywhere anywhere
112 7927 ACCEPT all -- any any anywhere anywhere

Chain fail2ban-ssh (1 references)
pkts bytes target prot opt in out source destination
0 0 DROP all -- xxxxxxxxxxxxxxxxxxxxxxxxx anywhere
0 0 RETURN all -- any any anywhere anywhere

Ich wühle mich die ganze Zeit durch Google aber es gibt nichts ähnliches scheinbar.
Hoffe ihr wisst weiter.

MfG

[Natureshadow]

Hallo,

das ist kein Server. Das ist garantiert OpenVZ/Virtuozo.

Wenn du dein System administrieren möchtest, besorge dir bitte Hardware oder eine anständige Virtualisierung!

-nik