Ipchains/iptables/ssh
 

I've got a very frustrating problem. Any help would be most appreciated.

I run Redhat 7.3, and with the standard install of it there is a firewall being installed. Because of the firewall (I presume) I cannot ssh to the machine (it's running ssh daemon), and I cannot access the web-server.

I tried lokkit, that didn't work.
Then I tried to flush the ipchains rules, but still it was a no go.
THen I tried stopping ipchains and iptables completely. Didn't work neither.

I can ping the machine, but when I portscan it, neither port 22 or 80 are open.

Any ideas? Cause I've run out of them.

Well if you port scan the machine and the ports are not open this usually means the services are not running. A firewall would not hide these open ports. Try something like this:

/etc/init.d/httpd start

and then do a port scan. If httpd starts up without errors you should see port 80 open.

Yes, I've done that, and also /etc/init.d/sshd start
Still no open ports. (using nmap)

Ummmm....did the services start okay? Also, if you have disabled all firewalls, check your /etc/hosts.allow and /etc/hosts.deny files.

Yes, they started with [OK]

hosts.allow and hosts.deny... I will check them.

RockerSWE do you have Instant Messenger?

Do netstat -anp and look for the servers by port number and name to see if they are running.

Do 'service ipchains stop' & 'service iptables stop' to clear any rules.

Also do lsmod and see which firewall modules are loaded.
if they are ipt_~~~ you have had iptables running, if they look like ip_masq_~~~ you have had ipchains running.

iptables won't load if any ipchains modules are in memory already.
do rmmod ip~~~~ to remove any that are there, then do chkconfig --level 2345 ipchains off to stop ipchains from starting again.

That should stop the firewall from interfering for the moment. You can restart it later.