?
Solved

Linux setup: firewall issue?

Posted on 2000-01-04
5
Medium Priority
?
213 Views
Last Modified: 2012-05-04
I installed RedHat 6.1.  All is well, except when I try to either: 1) ftp/telnet to the Linux install, or 2) access something on a non-standard port (e.g. http on 7000), I get errors telling me the connection is refused.  I'm new to Linux but my assumption is the default install has setup a firewall.  I'm already behind a firewall and just want this disabled.  Unfortunately, I can't figure out how.
0
Comment
Question by:BrindleFly
  • 2
  • 2
5 Comments
 

Expert Comment

by:atrox
ID: 2323839
Seth, No defualt "firewall" is installed. There is probably nothing on http 7000.  AS for ftp/telnet.  You probably need to configure a user to do this.  If you are using root, it is usually disallowed by default for security reasons.  Create a user and try it.  Also Check your etc/inetd.conf to make sure ftp and telnet services are running (and a good file to know to check for everything else that is a potential security problem.)  I am not on a RedHat box so I dont know exactly but most distros also have files in etc like 'ftpaccess' and the like, this file controls who has access to ftp, telnet is similar.  
0
 

Author Comment

by:BrindleFly
ID: 2323952
In this case, I have a Java Web server that I am starting at the command line.  It starts and listens on port 7001 (or so it says).  Any idea what could be going on?

How can I confirm an app is listening on a port?
0
 

Author Comment

by:BrindleFly
ID: 2323977
In this case, I have a Java Web server that I am starting at the command line.  It starts and listens on port 7001 (or so it says).  Any idea what could be going on?

How can I confirm an app is listening on a port?
0
 
LVL 12

Accepted Solution

by:
j2 earned 800 total points
ID: 2324190
Redhat does not install firewalling by default.

You will get connection refused on all ports that arent servicing a daemon.

You must also make sure that the port isnt in use in /etc/inetd.conf (unless YOUR application is launched via inetd)

netstat -a and netstat -aN will show you all ports which have listeners.

like:

tcp        0      0 0.0.0.0:25              0.0.0.0:*               LISTEN  

means that something is listening on port 25 on all interfaces (this is my SMTP)

udp        0      0 192.168.0.254:53        0.0.0.0:*

means that i have a DNS listening only on my internal interface.
0
 

Expert Comment

by:atrox
ID: 2324225
what about the ftp telnet, I could not have guessed that you have a java server on 7000, that would have been useful info though.  can you ftp and telnet with standard user accounts?
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Stellar Phoenix SQL Database Repair software easily fixes the suspect mode issue of SQL Server database. It is a simple process to bring the database from suspect mode to normal mode. Check out the video and fix the SQL database suspect mode problem.

594 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question