Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 24020
  • Last Modified:

How to open port 1521 and port 1158 on redhat

I want to know how to open port 1521 et 1158 (for oracle ...) on redhat linux.

I have used the procedure bellow but it doesn't seem to work


#vi /etc/sysconfig/iptables


add this line
# -A RH-Firewall-1-INPUT -m state –state NEW -m tcp -p tcp –dport 1158 -j ACCEPT
# -A RH-Firewall-1-INPUT -m state –state NEW -m tcp -p tcp –dport 1521 -j ACCEPT

Restart IPTABLES
# /etc/init.d/iptables restart

verify that the ports are open
#netstat | grep 1158
#netstat | grep 1521
0
cismoney
Asked:
cismoney
  • 5
  • 5
1 Solution
 
fosiul01Commented:
are there any services running on port 1158 and 1521 ??

netstat output will only show if somethign is runnign on those port
0
 
cismoneyAuthor Commented:
yes some oracle services are supposed to run on these ports. the dba told me to open these sports
0
 
fosiul01Commented:
telnet you can telnet to those port

telnet localhost   1158

or

telnet ip-of-server 1158

see if you can connect or not
0
Configuration Guide and Best Practices

Read the guide to learn how to orchestrate Data ONTAP, create application-consistent backups and enable fast recovery from NetApp storage snapshots. Version 9.5 also contains performance and scalability enhancements to meet the needs of the largest enterprise environments.

 
cismoneyAuthor Commented:
can't connect via telnet

here is the output

# telnet localhost 1158
Trying 127.0.0.1...
Connected to localhost.localdomain (127.0.0.1).
Escape character is '^]'.

Open in new window

0
 
fosiul01Commented:
the output shows its connected   ::: Escape character is '^]'.


here you trying from localhost

could you try from another computer in your network ??


from different computer in your network  (xp or another linux)

telnet ip-of-server 1158

0
 
cismoneyAuthor Commented:
the result is the same
0
 
fosiul01Commented:
if you can telnet to  1158 from out side of the server
which mean, the port is opened


Now if you cant telnet 1521 from out side of server
which means , the services is not enabled on that port

or you have not open that port from firewall  

but by looking at yoru question, its lik port 1521 (tcp ) is open

do this

lsof -iTCP | grep 1521

lsof -iTCP | grep 1558

see what runnign on those port




0
 
cismoneyAuthor Commented:
i just typed these two command and there is no output
0
 
fosiul01Commented:

sorry its 1158  not 1558



lsof -iTCP | grep 1158
0
 
arnoldCommented:
As fosiul01 pointed
lsof -i:<portnumber>
if there is a process that is bound to this port, you will get the listing.

The procedure you followed depends on where you placed those two lines.
Presumably you do not have an explicit deny after which you add the referenced lines.

Try this:
iptables -L RH-Firewall-1-INPUT --line-numbers

iptables -I RH-Firewall-1-INPUT <x> -p tcp –dport 1158 -j ACCEPT
iptables -I RH-Firewall-1-INPUT <x> -p tcp –dport 1121 -j ACCEPT

(running the above commands makes the changes effective immediately but a restart of the iptables or the system will revert back since these changes are unsaved until you run /etc/init.d/iptables save)

Where <x> is replaced with a row number (depending on how many lines in your existing chain, 4,5 or 6 should be fine to use.  Make sure you do not have a Deny/Reject rule after which you are adding these entries.

Double check that you did not alter the ports
http://download.oracle.com/docs/cd/B19306_01/install.102/b15660/app_port.htm

netstat -an | egrep '(1158|1121)'

Fosiul01 pointed out that the connection is made, but the process might involve encryption which might explain why you are not seing anything after the connection is established.
0
 
cismoneyAuthor Commented:
it worked !!! thanx. i just found out  this command
 #system-config-securitylevel

Open in new window



its very easy to use, it display the firewall graphical interface with xterm
0

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

  • 5
  • 5
Tackle projects and never again get stuck behind a technical roadblock.
Join Now