opening port 433

thekidder · 09-09-2005, 05:22 PM

I have a dedicated server with Plesk 7.5.4 on CentOS 3.3 and I need to be able to serve secure pages. When I contacted Plesk about a similar problem (getting the web stats to work) they said I need to open port 433 to do this. How can I do this with either Plesk or through SSH?

bosewicht · 09-09-2005, 05:30 PM

I've never used centos, but i have heard it has a pretty extensive firewall. If you have this enabled and want to continue using the one with centos, you may want to find some docs. Otherwhise you can disable the firewall and use some other that may be a little easier for you to config.

Are you using a router? you will need to open the port for the server ip on that as well.

thekidder · 09-09-2005, 05:33 PM

I don't know anything about the physical network setup of this server - its a dedicated server I bought from Layered Technologies.

bosewicht · 09-09-2005, 05:56 PM

ok, then i would read this http://www.centos.org/docs/4/html/rh...-firewall.html then ssh into the server and open port 443. After looking thru that page, it's just the basic redhat firewall. For some reason I thought they used something else.

thekidder · 09-09-2005, 06:23 PM

I read through that page but system-config-securitylevel gives a command not found error and /etc/sysconfig/system-config-securitylevel doesn't exist.

bosewicht · 09-09-2005, 06:38 PM

if thats the case try looking at /etc/sysconfig/iptables. Open it up in a editor (vi, vim, emacs, nano<easier>) and type
ctrl+w (with nano)
then type
iptables -A INPUT -p

You will want to add something like below to that file. Then you will want to restart iptables.
iptables -A INPUT -p tcp -s 0/0 -d 0/0 --destination-port 443 --syn -j ACCEPT

I would do a quick search for howto iptables if you've never worked with them.

To configure the set of iptables rules:
/etc/rc.d/init.d/iptables stop

To save the current set of iptables rules for use at next reboot:
/etc/sysconfig/iptables

To dynamically restart iptables after modifying /etc/sysconfig/iptables:
/etc/rc.d/init.d/iptables restart

thekidder · 09-09-2005, 06:48 PM

I tried that and it didn't work....but even with iptables off it doesn't work, so doesn't that mean the problem is elsewhere?

bosewicht · 09-09-2005, 06:50 PM

have you tried running nmap?

thekidder · 09-09-2005, 06:54 PM

No but the Plesk person I talked to did...

nmap 72.36.168.10 -p433

Starting nmap V. 3.00 ( www.insecure.org/nmap/ )
The 1 scanned port on servidor1.sdmservidores.com (72.36.168.10) is: closed

Nmap run completed -- 1 IP address (1 host up) scanned in 2 seconds

This causes the problem. You should open port 433 to enable SSL and access stats.

bosewicht · 09-09-2005, 07:03 PM

try running in why you are ssh'ed into the machine.

thekidder · 09-09-2005, 07:07 PM

nmap - command not found. I'd install it but I'm going to request an OS reload on the server anyway, there are a ton of problems with it. I'll try and fix this if it's still a problem after the reload.

bosewicht · 09-09-2005, 07:13 PM

ok, good luck. If you're uncomfortable at the command line, you can use X thru ssh as well.

Noobs like X