Fedora 7 firewall won't save changes, goes back to defaults
I've just installed Fedora 7 and am having a few firewall related problems. I'm trying to get some torrents working as well as some other networking issues. As root I am able to make changes (disable, port forwarding etc.) to the firewall through SYSTEM > ADMINISTRATION > FIREWALL AND SELINUX. I confirm the changes with APPLY and OKAY. As soon as I have completed these changes I open up SYSTEM > ADMINISTRATION > FIREWALL AND SELINUX again the changes are all gone and the firewall has gone back to it's default settings (enabled with none of my ports set up). I have tried rebooting as soon as I have made the changes (old windows habits die hard) and have tried installing Firestarter and disabling the firewall through there. Still the issue persists.
At this point I just want to disable the firewall and get on with things. Please if someone can let me know how to disable this thing permanently please let me know. Thanks -Abe |
I wouldn't recommend turning off the firewall if you have an always-on internet connection (and people usually chew me out for turning off too much) but if you really want to... open system --> administration --> services and disable firestarter, iptables and ip6tables by unchecking the little boxes. If you stop the services first you won't have to reboot.
You could also do it from the command line with: chkconfig firestarter off chkconfig iptables off chkconfig ip6tables off |
all of those services are now disabled (as is SELinux) but Azureus still thinks it is behind a firewall. Also when I go through the gui it still says the firewall is enabled. I am convinced the problem with azureus has something to do with this. I do not have a router right now and torrents work when I boot into windows.
|
Having the same problem with bacual client
Hi,
I am having the same problem with a bacula client. It seems that the settings are not saved from system-config-securitylevel. |
having same problem with bacula client
If I stop the ip6tables and iptables services things work so it sort of looks like something is wrong with system-config-securitylevel gui. I guess you have make changes to the iptables services manually.
|
I'm having the same problem and have arrt the same solution for now. Anybody find a solution yet?
dj Quote:
|
Are you connected directly to the internet? (Do you have an external ip?)
If yes, you should just open 6880 (or whatever the default listen-port is for torrents). If no, you need to do port-forwarding in your router/firewall. Forward port 6880 to the computer with Azureus. This works for me! Btw. these days some isps block the default torrent port, so you could possibly change the default port in Azureus. I use port 33001, which makes logging harder for my ISP ;) ( Go to Tools-->Options-->Connection, and change "Incoming TCP listen port", or just use iptables to open the current port.) A simple iptables script that will work on a computer connected directly to the internet (i.e. a firewall with forwarding). This script also enables torrents on an internal computer. On the firewall/external computer you need to change the Incoming TCP listen port to 33001, and the internal computer will use the default port: Code:
#!/bin/bash Copy the above into a text file, "chmod +x <textfile_name>" and execute it (./<textfile_name>) If you only need a local firewall script (only one interface, with an external IP): Code:
#!/bin/bash If any of these scripts fail, check my syntax ;) might be a syntax error in there. You might also need certain modules compiled or loaded. If the script fails on the "-j LOG", just try to comment it out (disable/delete it), or recompile your kernel with the correct modules. The first script is not a bulletproof firewall, but it should be safe enough to get you started. Later it can be made stricter, but as long as you trust the LAN you should be fine. The second script is ONLY useful if you are directly connected to the internet. If not, you might need to open some more ports, or possibly allow access from your NFS server (portmap is a b**ch) etc... You will also have to forward port 6880 to the computer running this script. Hope this can help some of you! I've had the same "Behind firewall" and NAT errors in Azureus, and the above scripts helped me (and even got me higher average download speeds). |
All times are GMT -5. The time now is 04:19 PM. |