Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Ok i was searching through the threads here and i am confused so sorry if this is a repeat, but I need to ask so here goes.
I am running Redhat 8.0 downstairs on my computer. I am using cable through a D-Link router. I am running a MUD on the computer downstairs, and I can access it through my network no problems... I can access the mud even outside my network no problems. It runs on port 4444. Now I can access my server using Telnet on my network, but run into the problem of accessing it outside my network. I basically want to use it so I can program my MUD, not just from home, but from my school too.
This is where I am lost. I have messed with the firewall, no go. I messed with hosts.allow and all of that, no go.
PLEASE if anyone could help, I have been nonstop reading on this.
Distribution: Fedora, Debian, OpenSuSE and Android
Posts: 1,820
Rep:
Are you trying to forward the port through the firewall? Also make sure you do the following.
echo 1 > /proc/sys/net/ipv4/ip_forward
That enables forwarding support. Then it's just a matter of writing the prerouting, forward, and postrouting rules in iptables. Give us a little more info on what you are trying to do and we'll be able to help more.
OK I'll try my best to post what i need to.. I want to access my computer from outside my network. I have a MUD (Multi User Dungeon (word based game)) running on port 4444 and it works fine. When i try to access my server (port 23 using telnet) it will not let me use it outside my network. I can access my server on my other computer, just fine. I want to be able to access, where i have all my coding files stored, from school. I have my firewall on my router and my virtual server set up right for my MUD and it works, I just cant access my computer from outside the my house.
I believe its Apache server. I am a partial newbie when it comes to this. Sooooo tell me what ya need to know and where to find it and i can do my best to get it.
Jay
Firstly,
don't use Telnet!
It sends logons and passwords in clear text. Anyone sniffing the network could read them, VERY easily, no joking!
Use the ssh server that comes with RH8.
service sshd start
At least then your communications are secure.
Use Putty for a client if you are starting from a Win pc.
Also look at 'man sshd_config' for configuration data.
The standard RH8 install is good tho'.
The firewall rules should allow port 22 from anywhere, but if you can narrow down the ip's you use, add them to the rule too.
Have a look at Firestarter to make doing the rules easier. A lot of members here use it happily
Last edited by peter_robb; 03-10-2003 at 02:28 AM.
OK thanks for the tip w/Telnet, I downloaded Firestarter and i like that ALOT. But I still cant access outside my network.. I went to add a rule to allow my schools host in the rules, and it said something to the affect of not being in the iptables... ???? (lost) also maybe i dont have apache set up right and tid bits on how to set that up right... Maybe i am using the wrong port to access ..
I am desperate on any ideas... knowing my stupid luck i am overlooking the obvious.
OK,
you have iptables running ok... looks like an rc.firewall.stronger script too.
type
iptables-save > /etc/sysconfig/iptables.saved
This will place a list of your rules into the file /etc/sysconfig/iptables.saved.
Mask your external ip number with xxx.xxx.xxx.xxx and please post it...
If my suspicions are correct, there will be some OUTPUT chain rules that need to be opened up...
(I've written this 1st line so many times I finally decided to delete it...)
The problem is in the OUTPUT chain where any replies to your port 23 requests don't have any permission to go back out...
The usual technique is to allow state ESTABLISHED,RELATED replies to go back out, but that doesn't happen here...
quote...
-A OUTPUT -d 0.0.0.0 -j LD
-A OUTPUT -p tcp -m tcp ! --tcp-flags SYN,RST,ACK SYN -m state --state NEW -j DROP
-A OUTPUT -m ttl --ttl-eq 64
-A OUTPUT -s 192.168.0.0/255.255.255.0 -o eth0 -p icmp -j ACCEPT
-A OUTPUT -j ACCEPT
The first line I've quoted drops everything, making following rules useless... The default policy is supposed to do this work...
The 2nd line is a mistake, there is no -j to jump to...
The last line is the opposite of the default DROP POLICY and shouldn't be there.
So, I suggest you add this from a command line to get working...
iptables -I OUTPUT 3 -p tcp -m state --state ESTABLISHED,RELATED -j ACCEPT
ok i added that line u said to do... that iptables chart i can look at when i have some more time... So with that added line will that fix the outgoing stuff on port 23? (sorry to seem stupid) but i just want to make sure i am doing this right..
1 more noob question... to configure the server part, could ya run it by me.. I just want to make sure my settings are correct... i have 4 options in xwindows
domain name service
http
nfs
services
I want to make sure i have it all set up
THanks SOOO much... i fixed a few other probs from this board
I appreciate it
Jay
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.