F-Secure Internet Gatekeeper for Linux/Administrator’s Guide
85
1. Add the following line to
sysctl.conf
(the maximum number of file handles is changed to
65535):
fs.file-max = 65535
2. Run the following command to apply the changes:
sysctl -p
Message
###ERROR### XXX cannot open [/var/tmp/fsigk/proxytmp-xxx]/strerror(2)=No
such file or directory
Description
Is displayed when a temporary file used by the product cannot be opened.
Solution
Check if the temporary file has been deleted by a command or another program.
Message
###ERROR### Cannot find tproxy(version2) interface.
Description
Is displayed when TPROXY usage settings
(Source
IP retained, transparent_tproxy=yes")
are carried
on and the tproxy patch is not working.
Solution
The tproxy patch may not be applied to the kernel.
Check if
/proc/net/tproxy
exists.
If you use
Turbolinux 10 Server
, please note the following:
- kernel-2.6.8-5 or later must be used
Check that the kernel version is 2.6.8-5 or later by using the “uname –a” command.
If the kernel version is old, update the kernel of Turbolinux10 to the latest one.
The - iptable_tproxy
module must be implemented.
Check if the “
iptable_tproxy”
module is included in the results from the “lsmod” command.
If it is not, include the module by following the steps below:
1. In
/etc/sysconfig/iptables-config
, set
iptables
to read
iptable_tproxy
by editing the
IPTABLES_MODULES
line in the following way:
IPTABLES_MODULES="iptable_tproxy"
2. Restart iptables
# /etc/rc.d/init.d/iptables restart
3. Check if
/proc/net/tproxy
exists
4. Restart the Internet Gatekeeper
If a previous version of
tproxy(version1)
is used, add
"transparent_tproxy_version=1"
to the
configuration file and restart the service. Please note that tproxy version1 may not be supported in
the future. For this reason, we recommend that you use version2.