Hello all,
I am using centos7 and therefore firewalld is my new best friend. I have been looking at the mening of what each zone is for. the definitions I've found are:
Quote:
drop - incoming network packets are dropped, with no reply, only outgoing network connections are possible
block - incoming network connections are rejected with an icmp-host-prohibited message, only network connections initiated within this system are possible.
public - For use in areas where you do not trust the other computers to not harm your computer, only selected incoming connections are accepted.
external - For use on external networks with masquerading enabled especially for routers, you do not trust the other computers to not harm your computer, only selected incoming connections are accepted
dmz - For computers in your demilitarized zone that are publicly-accessible with limited access to your internal network, only selected incoming connections are accepted.
work/home/internal - you mostly trust the other computers on network to not harm your computer, only selected incoming connections are accepted
trusted - all network connections are accepted
|
With that said,
I am trying to configure a splunk app (splice) to connect to mongodb on the same localhost, but i am getting the following error:
Code:
06-25-2015 09:45:58.466 +0100 ERROR ExecProcessor - message from "python /opt/splunk/etc/apps/SA-Splice/bin/taxii.py" ERRORcould not connect to 127.0.0.1:27017: [Errno 111] Connection refused
Which suggests to me i have my firewall incorrectly configured, atm the rule i am using is:
Code:
firewall-cmd --zone=internal --add-port=27017/tcp --add-source-127.0.0.1
Is it possible i am using the wrong zone?
Should i perhaps use trusted and specify 127.0.0.1?