I have a vps kvm openstack in OVH. The status of services in ovh monitoring always comes out in red and I think the rules are well configured in the firewall.
Rules:
/sbin/iptables-A INPUT -i ens3 -m state --state ESTABLISHED,RELATED -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p tcp --dport 25 -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p tcp --dport 53 -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p udp --dport 53 -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p tcp --dport 80 -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p tcp --dport 110 -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p tcp --dport 443 -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p tcp --dport 21 --source xx.xx.xx.xx -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p tcp --dport 22 --source cache.ovh.net -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p tcp --dport 22 --source xx.xx.xx.xx -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p icmp --source proxy.ovh.net -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p icmp --source proxy.p19.ovh.net -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p icmp --source proxy.rbx.ovh.net -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p icmp --source proxy.rbx2.ovh.net -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p icmp --source AAA.BBB.CCC.250 -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p icmp --source AAA.BBB.CCC.251 -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p icmp --source ping.ovh.net -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p tcp --source 192.168.0.0/16 -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -p udp --source 192.168.0.0/16 -j ACCEPT
/sbin/iptables -A INPUT -i ens3 -j REJECT
Message:
systemctl start iptables
Failed to start iptables.service: Unit iptables.service not found.
' The operating system is Debian 9.