OpenSUSE Network :: 11.3 With LXDE: Manually Defined Ports Are Not Getting Through The Firewall?
Sep 21, 2010
I'm using opensuse 11.3 32bit with LXDE. I have configured an apache tomcat server listening on port 8080. Yast was used to open udp 8080 and tcp 8080 in the firewall by manual entry under the advanced button of 'allowed services' menu.Another system was used to access the tomcat server via a firefox webbrowser. The attempt was unsuccessful. The url used was [URL]. firefox webbrowser keeps showing'connecting ...' until timeout. I'm assuming that inspite of the specified port openings in the firewall, it is somehow ignored. If I were to disable the firewall, then I can access the tomcat server with the firefox webbrowser.
View 2 Replies
ADVERTISEMENT
Apr 27, 2010
I have a couple of openSUSE 11.2 machines and each is directly connected to the Internet (they are not behind a router, firewall, etc). I want them to be able to communicate without any firewall restrictions, but keep the firewall rules for all other IP addresses. Is this possible? the software package I'm trying to use randomly chooses a port to use in the range of 32768-61000 and I don't feel comfortable having a port range that wide open on both machines.
View 5 Replies
View Related
Jan 11, 2011
I have a question about /etc/services file. If I open ports in firewall, do I need to alter /etc/services file in order for certain apps to work?
kpasswd 464/tcp # kpasswd
kpasswd 464/udp # kpasswd
# Theodore Ts'o <tytso&MIT.EDU>
# 465 is illegal used by eMail Server
smtps 465/tcp # eMail Server
#urd 465/tcp # URL Rendesvous Directory for SSM
igmpv3lite 465/udp # IGMP over UDP for SSM
# Toerless Eckert <eckert&cisco.com>
digital-vrc 466/tcp # digital-vrc
digital-vrc 466/udp # digital-vrc
Above example shows if 465 tcp isn't altered, Postfix MTA fails to listen on 465 tcp port. What if there's a bigger span 3000:7000 TCP/UDP, is there a need to alter each line by hand?
View 2 Replies
View Related
Mar 6, 2011
i have two questions and thought that anyone here could have the answers.first things first,i want to make firewall accept a range of ports (say 8000:9000) because im using mpd process manager to make some parallel processing, does anyone know the command that satisfy this?
the second thing is, when i open a range of ports like that, it would put my system at risk if some bad guys somehow identifies this range, is there is anything that solves that matter(i.e. makes the firewall monitor the packet, if its an mpd accept if not drop)
View 4 Replies
View Related
Aug 16, 2010
How to open RTP UDP ports (port_number : port_number) in openSUSE 11.2 firewall with yast?
View 2 Replies
View Related
Jan 8, 2010
I'm encountering a strange problem. I need to open and forward all UDP and TCP ports related to VoIPtelephony (5000:32000) in the Suse 11.1 server that's acting as router/firewall in our setup. The ports must redirect to a Asterisk server in the local network. (This server has the IP adress 192.168.0.3)I've opened ports in Yast (Firewall>Ports>Advanced) and putted in some masquerading rulesirewall>Masquerading):0/0,192.168.0.3,tcp,5000:31000,5000:310000/0,192.168.0.3,udp,5000:31000,5000:31000when I do a nmap localhost I get:Starting Nmap 4.75 at 2010-01-08 16:52 CETInteresting ports on localhost (127.0.0.1):
Not shown: 991 closed ports
PORT STATE SERVICE
21/tcp open ftp
[code]....
View 9 Replies
View Related
Jan 23, 2011
how to open firewall ports without using yast. The reason I'm asking is because I'm working on a .sh script for the installation of a couple of programs. Some ports need to be open for the programs to work, I find it really annoying to go to yast and type the ports manually every time. I've looked at /etc/sysconfig/SuSEfirewall2 but can't seem to find anything, I also know that after the changes I will have to stop start the firewall by running:
SuSEfirewall2 stop
SuSEfirewall2 start
View 4 Replies
View Related
Mar 25, 2011
I suspect this is an initial configuration bug. All firewall logs seem to be going to all
three files. That causes a lot of clutter in the log files, and makes it difficult to see whether there are any serious problems being logged.
View 9 Replies
View Related
Sep 22, 2010
I setup an opensuse 11.3 with LXDE. This system has ipv6 disabled and the firewall permits ftp. When I tried to ftp into this system, it fails with the following message in the console. $ ftp 192.168.1.123 Connected to 192.168.1.123. 500 OOPS: could not bind listening IPv6 socket
View 2 Replies
View Related
Feb 19, 2011
I just installed OpenSuSE 11.3 on an old IBM T20 I had kicking around and I'm using a Proxim Wireless PCMCIA Card (Atheros AR5001X). Since this laptop does not have a DVD drive I installed the system using the Netboot CD and have the SuSE 11.3 ISO on an NFS/SAMBA file server. The issues appeared after the first reboot, the adapter no longer worked. I resorted to using the wired interface to finish the install.
Once the system was up followed the trouble shooting steps outlined in various places and found the ESSID is not being picked up by the ifup scripts. Not sure if it matters but I have ESSID broadcasts turned off on all my WAPs.
The ESSID is in ifcfg-wlan0. To get wireless working I have to manually issue iwconfig wlan0 essid "xxxx"..
Both networkmanager and ifup fail..
View 9 Replies
View Related
Aug 3, 2010
How do you install network manager in LXDE. I need to choose from a list of available wireless networks.
View 2 Replies
View Related
Apr 7, 2011
I want some advice for making my system more secure. I want deactivate any network connection that is unnecessary. Only my browser and the update ability of zypper should have access to the internet. On windows there are personal firewalls.
How can I block internetaccess for all other programmes on openSUSE?
View 8 Replies
View Related
Jul 26, 2010
Samba is working correctly if Susefirewall2 is off. I have added Samba client and Samba Services for extern access but samba is not working when firewall is now on. Which services should I also add ?
View 1 Replies
View Related
Sep 9, 2011
I have just switched over from firestart to gufw.I have set all incoming traffic to deny and all outgoing traffic to allow.I have rules set for incoming traffic, and have only opened 1 port on my system for torrents. My router also only has the same port opened which again is for torrents.I use "Network Tools" which is included on squeeze and do a portscan of 192.168.1.100 and 127.0.0.1 I get all kinds of crazy ports coming back as opened. What is even stranger is if I do a few scans, these ports change, so one port on one scan may come up as open, then it will disappear and a different port may show as open.
Mind you none but the torrent port is forwarded in my router, I have no idea what any of these other ports are, or why they are even showing up.What the heck is going on? I dont think this is normal? Am I at any higher risk for attack?
View 1 Replies
View Related
Jun 29, 2010
I want to lock down my server to allow only certain ip addresses and ports in. I was thinking of doing this through the iptables but someone sugguested I used the hosts.allow and deny files to allow who can access the system. What do people suggest? If I"m trying to ensure no ip's can access my system except the ones I want, how would I do this with just the allow and deny files?
View 4 Replies
View Related
Feb 18, 2011
I want to know how to add (ports to open)in firewall using command or scriptor any ather method
View 4 Replies
View Related
Feb 18, 2011
i need to add some ports in firewall(RHEL5) how can i do it using command or script or anything?? i know one method from graphic firewall wizzardtell me other shortcut to add more then one ports
View 2 Replies
View Related
Jan 27, 2011
Which ports should be open for a mail server for INPUT CHAIN? When I use firewall rules (allow just a few ports), some users complain that they're not receiving messages from other domains. When the firewall is disabled these ports show as open:
Code:
Not shown: 9987 closed ports
PORT STATE SERVICE
21/tcp open ftp
[code]....
Which ports should be enabled?
View 3 Replies
View Related
Aug 23, 2010
I have installed 11.3. Now for DSL I use PPP over Ethernet. I have configured DSL via YAST and it works fine. The connection is set at boot.
Now I want DSL to connect manually not at boot time. I did changes in the YAST/DSL to start Manual and rebooted. Once rebooted how do I connect?? Like any button/applet ??
View 1 Replies
View Related
Jan 8, 2011
once upon a time i manually entered my ISP's DNS servers in /etc/resolv.conf Now i have changed ISP, my old DNS setting are still present even though i have edited my resolv.conf file to my new ISP's DNS servers. Internet still works fine, i just want to use my new ISP's DNS as my old ISP will be closing its doors very soon. Am i doing something wrong, or better put.forgot to edit another file..? I did do this a while ago, so i apologise in advance for my incompetence. I'm stilling running 11.1 / Router has DHCP configured. my resolv.conf file is below
Code:
cat /etc/resolv.conf
### /etc/resolv.conf file autogenerated by netconfig!
#
# Before you change this file manually, consider to define the
# static DNS configuration using the following variables in the
# /etc/sysconfig/network/config file:
# NETCONFIG_DNS_STATIC_SEARCHLIST
[Code]...
View 9 Replies
View Related
Feb 6, 2010
In my firewall I have these ports open:
21
143
110
[code]...
View 9 Replies
View Related
Jul 26, 2010
I am having trouble getting ports to open, on the router that the server is connected to it is set to DMZ, so everything passing through the router should go to the server right? but when I use a port checker none of the ports that I need to be open are. so my question is does ubuntu have a built in firewall that no one told me about? or something that would block me from having the ports open?
View 3 Replies
View Related
Sep 8, 2010
I have linux server setup on a network with 2 interfaces. One (eth0) is connected to the regular network and the other (eth1) has a DHCP server and transparent web cache listening on it. The machines connected on the eth1 side are on a different subnet and the linux server is there gateway. Untrusted machines are introduced to this network to keep them isolated.
This isolation works well, too well. There are a small set of resources on the regular network I would like to make available to machines on untrustworthy network. I think I need to use iptables but alas I've had no luck in piecing together the command I need (in one case looking myself out and having to physically reset the machine).
View 3 Replies
View Related
Nov 12, 2010
What are the security implications of closed ports?
View 5 Replies
View Related
Apr 1, 2010
I would like to ask today how to open up specific ports in Linux firewall (iptables). Recently I have changed the SSH port in server from 22 to 30022 by typing
Code:
# vi /etc/ssh/sshd_config
Code:
Port 30022
"/etc/ssh/sshd_config" 111L, 3027C
And then for the iptables configuration file:
Code:
# vi /etc/sysconfig/iptables
[code]....
How to configure the iptables properly so that my Windows PC can access the Linux with port 30022?
View 10 Replies
View Related
Jun 25, 2010
I have a Suse 10.3 router with 4 network cards. 1 is to connect to the big network and thereby also the internet, 2 are for 'client' subnets and I want to use the last one as a DMZ. In this DMZ will be a web server which has to be accessible from the other 2 subnets and from the big network. I could do it with a few simple clicks in Yast firewall, but I have some issues with this firewall and there for I want to use it as minimal as possible, using Iptables.
So now I'm struggling a bit with Iptables. Basicly what I'm looking for is how to block all ports but 80 in this last subnet with iptables.
View 5 Replies
View Related
Jul 18, 2011
I'd like to have a port open for some streaming radio stations. However, I don't know if they are UDP or TCP or what "direction" to have them set up (inbound or outbound). I also don't know if they should be set up for "host" or "dynamic". The stations I'm interested in are the 181.fm channels mostly (shoutcast stations). We have a Westell A90 type modem/router from Verizon.
View 7 Replies
View Related
May 29, 2010
My upstream DNS server is a bit slow, so I've installed the dnsmasq cacher locally. I have the service starting on runlevels 2, 3, and 5. But I can tell by Firefox's behavior that dnsmasq does not work upon boot. Firefox lets its own DNS cache expire after 60 seconds. When I do my second Google search five minutes after my first, the second DNS lookup for www.google.com is just as slow as the first.If I manually restart the dnsmasq service, I get the fast name resolutions I expect.
View 2 Replies
View Related
Nov 20, 2010
I'm building a wireless router based on OpenSuse 11.3 I have experience with Debian, but here I'm confused howto manually configure network interfaces. I need my wireless card to work in master mode, so I need to place
[Code]...
View 3 Replies
View Related
Mar 17, 2011
I am trying to understand why when running nmap against a SonicWALL firewall at a remote location, the SonicWall firewall is saying that most of its 65535 ports are open? I know this cant be correct and remember reading about how some of these network appliances are setup this way to thwart off attacks.
View 7 Replies
View Related
