After a recent VPS upgrade to the container by my provider I noticed that anytime I attempted to add a simple iptables rule (e.g.
The cause of this error was exceeding a new limit that my provider imposed on the VPS containers to cap the rule count. I had a lot of rules and when I reduced them to be within the value set in numiptent I was again able to add rules to iptables without errors.
I’m running CentOS – here is how you can check to see the limits and current values of the numiptent settings.
cat /proc/user_beancounters | grep numiptent
Output will be in the format
resource held maxheld barrier limit failcnt