?
Solved

Cannot get Webmin to respond remotely

Posted on 2009-12-20
27
Medium Priority
?
458 Views
Last Modified: 2013-11-16
Fresh install of CentOS
Installed Webmin direct from Webmin's site

Added exception to IPtable - even tried disabling the module completely
Service is running - checked many times.

Please help - starting to give up all hope!
0
Comment
Question by:tready-uk
  • 14
  • 13
27 Comments
 
LVL 1

Author Comment

by:tready-uk
ID: 26092418
forgot to add;  don't get any response from the server using the 10000 port. But can access the page from the server itself. Expecting it to be an issue with the firewall somewhere... but don't know where!
0
 
LVL 29

Expert Comment

by:fosiul01
ID: 26092505
this is must of firewall issue

can i see the iptables rueles

cat /etc/sysconfig/iptables

copy and past the output here


0
 
LVL 1

Author Comment

by:tready-uk
ID: 26092516

[root@s15278890 ~]# cat /etc/sysconfig/iptables
# Generated by iptables-save v1.3.5 on Sun Dec 20 19:15:55 2009
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [29604:1863671]
:RH-Firewall-1-INPUT - [0:0]
-A INPUT -j RH-Firewall-1-INPUT
-A FORWARD -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -i lo -j ACCEPT
-A RH-Firewall-1-INPUT -p icmp -m icmp --icmp-type any -j ACCEPT
-A RH-Firewall-1-INPUT -p esp -j ACCEPT
-A RH-Firewall-1-INPUT -p ah -j ACCEPT
-A RH-Firewall-1-INPUT -d 224.0.0.251 -p udp -m udp --dport 5353 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 631 -j ACCEPT
-I RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 10000 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT
-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
COMMIT
# Completed on Sun Dec 20 19:15:55 2009

thanks :D
0
Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

 
LVL 29

Expert Comment

by:fosiul01
ID: 26092531
your rules is wrong

-I RH-Firewall-1-INPUT -m state --state NEW -m tcp -p tcp --dport 10000 -j ACCEPT

it should be :

-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 10000 -j ACCEPT

Delete the wrong line, and insert again.

then restart iptables
try again

0
 
LVL 1

Author Comment

by:tready-uk
ID: 26092551
I have tried a few different lines as well - replaced the line with the one you provided (and restarted iptables) still no luck though.

New print out of iptables:


# Generated by iptables-save v1.3.5 on Sun Dec 20 19:15:55 2009
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [29604:1863671]
:RH-Firewall-1-INPUT - [0:0]
-A INPUT -j RH-Firewall-1-INPUT
-A FORWARD -j RH-Firewall-1-INPUT
-A RH-Firewall-1-INPUT -i lo -j ACCEPT
-A RH-Firewall-1-INPUT -p icmp -m icmp --icmp-type any -j ACCEPT
-A RH-Firewall-1-INPUT -p esp -j ACCEPT
-A RH-Firewall-1-INPUT -p ah -j ACCEPT
-A RH-Firewall-1-INPUT -d 224.0.0.251 -p udp -m udp --dport 5353 -j ACCEPT
-A RH-Firewall-1-INPUT -p udp -m udp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 631 -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m tcp --dport 10000 -j ACCEPT
-A RH-Firewall-1-INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT
-A RH-Firewall-1-INPUT -j REJECT --reject-with icmp-host-prohibited
COMMIT

thanks
0
 
LVL 29

Expert Comment

by:fosiul01
ID: 26092584
do you have any other firewall between this linux server and remote pc ??


0
 
LVL 1

Author Comment

by:tready-uk
ID: 26092601
Not that i know of - fresh install of CentOS.

Only incoming protection on my PC.

Webmin previously worked on this sever but needed a re-image after a hard drive failure.
0
 
LVL 29

Expert Comment

by:fosiul01
ID: 26092617
ommm

are you tryign to access this server from the same network ?? or from outside of your network ??

do this, iptables --flush

then , iptables -L

copy and past the out put here


0
 
LVL 29

Expert Comment

by:fosiul01
ID: 26092618
ommm

are you tryign to access this server from the same network ?? or from outside of your network ??

do this, iptables --flush

then , iptables -L

copy and past the out put here


0
 
LVL 1

Author Comment

by:tready-uk
ID: 26092628
The server is live on the web - i'm access it remotely via putty only so outside my network

I've done the flush, here is the response:


Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

Chain RH-Firewall-1-INPUT (0 references)
target     prot opt source               destination
0
 
LVL 29

Expert Comment

by:fosiul01
ID: 26092647
ok ..
whats the out put of this command

 netstat -ant | grep 10000


0
 
LVL 1

Author Comment

by:tready-uk
ID: 26092653
here it is...


[root@s15278890 ~]# netstat -ant | grep 10000
tcp        0      0 0.0.0.0:10000               0.0.0.0:*                   LISTEN


thanks!
0
 
LVL 29

Expert Comment

by:fosiul01
ID: 26092681
hmmmm

is this a vps server ??

also, can you telnet to port 10000 ??

telnet ip of your server 10000??
0
 
LVL 1

Author Comment

by:tready-uk
ID: 26092701
Nope - its not a VPS, seperate dedicated server.

And no... telnet doesn't work either...

[root@s15278890 ~]# telnet 212.227.57.xxx:10000
telnet: 212.227.57.xxx:10000: Name or service not known
212.227.57.xxx:10000: Unknown host
0
 
LVL 29

Expert Comment

by:fosiul01
ID: 26092727
you must of doing something wrong.

[root@s15278890 ~]  : is this your remote pc or Server pc where webmin install ??

and telnet would be like this

 telnet 212.227.57.33 10000

and do telnet , from the pc you are doing ssh to server pc





0
 
LVL 1

Author Comment

by:tready-uk
ID: 26092739
This is the server where webmin is installed.

I have just tried telnet from my PC to the server and the connection fails...

Thanks
0
 
LVL 29

Expert Comment

by:fosiul01
ID: 26092752
your iptables rules fine.
your webmin is running

so what wrong it could be!!

only thing i can imagine is, there must be another firewall between your dedicated server and your pc ..

i guess its hosted in data center or in your office,

you sure 100% there is any firewall ??
0
 
LVL 29

Expert Comment

by:fosiul01
ID: 26092754
sorry it could be


you sure 100% there is not any firewall ??
0
 
LVL 1

Author Comment

by:tready-uk
ID: 26092765
I'm pretty sure - server ip is 212.227.57.7 - can you get to the webmin login screen?
0
 
LVL 29

Expert Comment

by:fosiul01
ID: 26092792
nop, i cant .. it does not connect

is there any other server in the same network ?? then you could of try to connect another server and from that server you could of try to telnet this server ..
0
 
LVL 1

Author Comment

by:tready-uk
ID: 26092801
No that I have access to... no
0
 
LVL 29

Accepted Solution

by:
fosiul01 earned 400 total points
ID: 26092821
if this dedicated server you took from any hostinig provider, will you be able to email then and say, if they are bloking any ports or not  ??
0
 
LVL 1

Author Comment

by:tready-uk
ID: 26092825
I think I have the solution... shall let you know in a moment
0
 
LVL 29

Expert Comment

by:fosiul01
ID: 26092830
ok
0
 
LVL 1

Author Comment

by:tready-uk
ID: 26092890
Spoken to the hosting company - there was a hardware firewall but that is off now - just to see if it was the only thing stopping this working but it still doesnt work! driving me nuts!
0
 
LVL 1

Author Comment

by:tready-uk
ID: 26092912
Finally we are there! it is working! Thanks for your help - i'll reward you the points as I think it was ultimately firewall issue and you pushed me to the solution! many thanks for your quick help.

Cheers
0
 
LVL 29

Expert Comment

by:fosiul01
ID: 26094261
Good morning
good to see it solved.
0

Featured Post

SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Fine Tune your automatic Updates for Ubuntu / Debian
Virtualization software lets you run different versions of Windows, Ubuntu Linux and other versions of Linux all at the same time, rather than running each one directly from your computer's hard drive.
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
How to Install VMware Tools in Red Hat Enterprise Linux 6.4 (RHEL 6.4) Step-by-Step Tutorial
Suggested Courses

588 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question