LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 03-18-2003, 08:50 AM   #1
RockerSWE
LQ Newbie
 
Registered: Mar 2003
Posts: 3

Rep: Reputation: 0
Question Ipchains/iptables/ssh


I've got a very frustrating problem. Any help would be most appreciated.

I run Redhat 7.3, and with the standard install of it there is a firewall being installed. Because of the firewall (I presume) I cannot ssh to the machine (it's running ssh daemon), and I cannot access the web-server.

I tried lokkit, that didn't work.
Then I tried to flush the ipchains rules, but still it was a no go.
THen I tried stopping ipchains and iptables completely. Didn't work neither.

I can ping the machine, but when I portscan it, neither port 22 or 80 are open.

Any ideas? Cause I've run out of them.
 
Old 03-18-2003, 09:00 AM   #2
Crashed_Again
Senior Member
 
Registered: Dec 2002
Location: Atlantic City, NJ
Distribution: Ubuntu & Arch
Posts: 3,503

Rep: Reputation: 57
Well if you port scan the machine and the ports are not open this usually means the services are not running. A firewall would not hide these open ports. Try something like this:

/etc/init.d/httpd start

and then do a port scan. If httpd starts up without errors you should see port 80 open.
 
Old 03-18-2003, 09:05 AM   #3
RockerSWE
LQ Newbie
 
Registered: Mar 2003
Posts: 3

Original Poster
Rep: Reputation: 0
Yes, I've done that, and also /etc/init.d/sshd start
Still no open ports. (using nmap)
 
Old 03-18-2003, 09:10 AM   #4
Crashed_Again
Senior Member
 
Registered: Dec 2002
Location: Atlantic City, NJ
Distribution: Ubuntu & Arch
Posts: 3,503

Rep: Reputation: 57
Ummmm....did the services start okay? Also, if you have disabled all firewalls, check your /etc/hosts.allow and /etc/hosts.deny files.
 
Old 03-18-2003, 09:18 AM   #5
RockerSWE
LQ Newbie
 
Registered: Mar 2003
Posts: 3

Original Poster
Rep: Reputation: 0
Yes, they started with [OK]

hosts.allow and hosts.deny... I will check them.
 
Old 03-18-2003, 09:24 AM   #6
Crashed_Again
Senior Member
 
Registered: Dec 2002
Location: Atlantic City, NJ
Distribution: Ubuntu & Arch
Posts: 3,503

Rep: Reputation: 57
RockerSWE do you have Instant Messenger?
 
Old 03-18-2003, 03:19 PM   #7
peter_robb
Senior Member
 
Registered: Feb 2002
Location: Szczecin, Poland
Distribution: Gentoo, Debian
Posts: 2,458

Rep: Reputation: 48
Do netstat -anp and look for the servers by port number and name to see if they are running.

Do 'service ipchains stop' & 'service iptables stop' to clear any rules.

Also do lsmod and see which firewall modules are loaded.
if they are ipt_~~~ you have had iptables running, if they look like ip_masq_~~~ you have had ipchains running.

iptables won't load if any ipchains modules are in memory already.
do rmmod ip~~~~ to remove any that are there, then do chkconfig --level 2345 ipchains off to stop ipchains from starting again.

That should stop the firewall from interfering for the moment. You can restart it later.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
ipchains vs iptables ALInux Linux - Networking 1 11-14-2005 04:05 AM
using ipchains and iptables macburton Linux - Security 8 10-18-2004 01:05 PM
ipchains vs iptables bulliver Linux - Security 4 12-10-2002 03:43 PM
ipchains --> iptables lackluster Linux - General 3 05-29-2002 07:15 PM
iptables /ipchains DavidPhillips Linux - Networking 2 08-15-2001 12:09 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 03:10 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration