|
|
|
| Does anyone know how to open a port in RH 8.0? I used inetd.conf to open a port in RH 6.1, but now it changes and i'm lost. I just built another server and used the "Medium" (instead of "none") security/firewall option during installation... I couldn't seem to get ftp to work.
I appreciate any feedback.
Thanks, | |
| Boulware5 2002-11-30, 9:34 pm |
| It's either in your /etc/services file or it might be more complicated. Maybe it's an IPTables firewall rule that RedHat creates during the setup. Not 100% sure... | |
|
| I don't think it's "/etc/services"... I remember using the tcp wrapper in RH 6.1, but i'm not sure what's to use in 8.0. I think you could be right about ipchain tables, but i've used that before in 6.1. I'll look into it.
Thanks! | |
| Mr. Linux Guy 2002-12-01, 6:23 am |
| i think the Red Hat firewall has changed from ipchains in 6.x to iptables in 7.x+. Once you have a daemon running to listen to requests, it should listen on the well-known port (unles you changed the default) for incoming requests. If it refuses them, it is probably a firewall problem. You can list the rules by:
# iptables -L [chain]
Try flushing the current rules by using the '-F' opton to see if that clears up the problem. Any denied attemots to access a port should be logged in /var/log/secure and /var/log/messages, so check it out and see what kind of mesages you get. | |
| alany 2002-12-01, 11:21 am |
| I couldn't agree more... it's definitely a firewall problem that negates all accesses via ftp. I've heard there's an issue with RH 8.0 firewall. I think the best solution would be to choose "no" firewall option during installation and build the package from the ground up... that's why I did the first time and it didn't any problem... choosing "Medium" seems to cause a lot of headaches... 
But I will try to play with the "iptable" to disable the firewall feature as to avoid reinstalling the server.
If someone finds out how to do this, please share it with us.
thanks, | |
| alany 2002-12-02, 10:10 am |
| One solution to open an ftp port:
type "#setup" and the setup screen pops up, choose "Firewall configuration" -> three options to choose from (high, medium, no firewall) select "HIGH" if you want to block all ports --> Customize -> select "FTP" to "allow incoming" traffic... other ports will automatically be blocked.
I will try to figure out the commands to do this instead of the above method. | |
| Mr. Linux Guy 2002-12-02, 10:17 am |
| quote:
Originally posted by alany
I couldn't agree more... it's definitely a firewall problem that negates all accesses via ftp. I've heard there's an issue with RH 8.0 firewall. I think the best solution would be to choose "no" firewall option during installation and build the package from the ground up... that's why I did the first time and it didn't any problem... choosing "Medium" seems to cause a lot of headaches...
But I will try to play with the "iptable" to disable the firewall feature as to avoid reinstalling the server.
If someone finds out how to do this, please share it with us.
thanks,
Not really. It is causing you headaches because you are not familiar with it. Normally when I set up my firewall rules, I know what I want the box to be used for. So I usually select "customise" and only allow incoming requests for those services that I intend to run on the box. After that, just get used to iptables or ipchains and set the rules up yourself. to clear the rules, use the '-F' option for 'flush". that will kill the existing rules for that service. Then save the current configration. |
|
|
|