LinuxQuestions.org
Support LQ: Use code LQ3 and save $3 on Domain Registration
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 10-16-2011, 08:19 AM   #1
fmr
Member
 
Registered: Oct 2009
Posts: 31

Rep: Reputation: 0
Disable the firewall on Debian Linux 2.6.32-5-686


Hi, I need to disable my firewall on Debian. I do not know what is preventing inbound connections to my machine, as I have another Debian machine (also 2.6.* but 64-bit) which accepts inbound connections, and I have already flushed all my ipTables. I used the script @ http://www.linuxquestions.org/questi...rewall-763690/

Anything else that might be blocking ports?
 
Old 10-17-2011, 01:19 AM   #2
EricTRA
Guru
 
Registered: May 2009
Location: Gibraltar, Gibraltar
Distribution: Fedora 20 with Awesome WM
Posts: 6,805
Blog Entries: 1

Rep: Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291
Hello,

What kind of 'inbound connections' are you talking about? If you flushed your iptables then you should be able to connect to your machine if you didn't install something else like for example firestarter. Could it be that you are trying to connect to something that's not listening, a service that didn't start up or so?

Kind regards,

Eric
 
Old 10-17-2011, 07:40 AM   #3
Lexus45
Member
 
Registered: Jan 2010
Location: Kurgan, Russia
Distribution: Slackware, Ubuntu
Posts: 339
Blog Entries: 3

Rep: Reputation: 47
Seems strange if a fresh-installed Debian system has some iptables rules activated and stored somewhere.
What shows the "iptables -L -n" command?
 
Old 10-17-2011, 09:15 AM   #4
hen770
Member
 
Registered: Oct 2010
Distribution: Arch
Posts: 136

Rep: Reputation: 7
couldn't it be the inet or xinet server ?
 
Old 10-18-2011, 08:02 AM   #5
fmr
Member
 
Registered: Oct 2009
Posts: 31

Original Poster
Rep: Reputation: 0
Thank's for the replies!

Firestarter is not installed, and AFAIK, no other firewall software is installed except iptables.

# iptables -L -n says:
Code:
Chain INPUT (policy ACCEPT)
target     prot opt source               destination         

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination         

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
I tried this with numerous ports. I have a bittorrent client which uses port 27260 for incoming connections. Incoming connections are not working in the client. I also tried accessing a MySQL database on 3306 on my machine from another machine, and it does not work. Accessing 3306 on the local machine does work. (The SQL user has access from host %, i.e. anywhere).

hen770, I do not understand what you mean...
 
Old 10-18-2011, 08:27 AM   #6
EricTRA
Guru
 
Registered: May 2009
Location: Gibraltar, Gibraltar
Distribution: Fedora 20 with Awesome WM
Posts: 6,805
Blog Entries: 1

Rep: Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291
Hi,

For what MySQL concerns, did you configure the bind-address to the IP you want to connect to? Default installation has 127.0.0.1 set as bind-address so it's only normal that your MySQL instance isn't responding on a LAN / public IP if that's the case. Can you check what listening ports/service you have running? Run:
Code:
netstat -tunalp
and post output.

Kind regards,

Eric
 
1 members found this post helpful.
Old 10-18-2011, 09:38 AM   #7
fmr
Member
 
Registered: Oct 2009
Posts: 31

Original Poster
Rep: Reputation: 0
Thumbs up

Cool beans! I forgot about the netstat utility. It seems the problem was with MySQL only listening on 127.0.0.1. The bind-address is now 0.0.0.0 and it's working. Some other ports are still not working, but those must be similar problems...

Thank you!
 
Old 10-18-2011, 09:47 AM   #8
EricTRA
Guru
 
Registered: May 2009
Location: Gibraltar, Gibraltar
Distribution: Fedora 20 with Awesome WM
Posts: 6,805
Blog Entries: 1

Rep: Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291Reputation: 1291
Hello,

You're welcome! Glad you've found at least a solution for MySQL. I'm sure you'll figure out what's wrong with the other processes/services. If you need assistance, don't hesitate to post details about what process / service you need to configure.

Kind regards,

Eric
 
  


Reply

Tags
block, debian, firewall, iptables, ports


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Debian linux-headers-2.6.39-2-686-pae package no longer exists, auto-installs 3.0.1 Willrandship Linux - Kernel 2 08-15-2011 03:46 PM
depmod stalls on setting up linux-image-2.6.26-2-686 (Debian 5.0 Lenny) vpv Linux - Kernel 0 05-26-2011 03:05 AM
[GNOME 2.22.3] [Debian 2.6.26-2-686] Disable screen lock Norwood Linux - General 2 03-04-2010 09:26 AM
Disable debian Firewall!!!!!! shane200_ Debian 1 07-06-2006 05:09 PM
Dhcp problems with debian linux-image-2.6.15-1-686 in etch notapplicable Linux - Networking 10 02-16-2006 12:37 PM


All times are GMT -5. The time now is 06:09 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration