Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Unable to open firewall port for external traffic.
Top Forums Shell Programming and Scripting Unable to open firewall port for external traffic. Post 303027410 by mohtashims on Saturday 15th of December 2018 06:29:07 AM
Old 12-15-2018
Unable to open firewall port for external traffic.
Below is what i did to open the firewall port on

Code:
[root@vultr ~]# sudo firewall-cmd --zone=public --add-port=27012/tcp --permanent
Warning: ALREADY_ENABLED: 27012:tcp
success
[root@vultr ~]# sudo firewall-cmd --reload
success
[root@vultr ~]# firewall-cmd --list-all
public
  target: default
  icmp-block-inversion: no
  interfaces:
  sources:
  services: dhcpv6-client ssh http https
  ports: 80/tcp 27012/tcp
  protocols:
  masquerade: no
  forward-ports:
  source-ports:
  icmp-blocks:
  rich rules:

[root@vultr ~]# uname -a
Linux vultr.guest 3.10.0-862.14.4.el7.x86_64 #1 SMP Wed Sep 26 15:12:11 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux

When i telnet to the servers IP:Port it fails

Code:
telnet 45.76.142.202 27012
Connecting To 45.76.142.202...Could not open connection to the host, on port 27012: Connect failed

It however does connect to port 80
Code:
telnet 45.76.142.202 80

Can you please help me get firewall port 27012 connect externally just the way port 80 is connecting ?
 

10 More Discussions You Might Find Interesting

1. Solaris

How to open SSH port on firewall?

Hi, So that potential responders will have an idea of what they're dealing with let me say that while I am a UNIX newbie I have been in IT for over 10 years. We have several SUN boxes running ver 5 of the OS that have been sitting dormant for some time as they were part of a now defunct... (3 Replies)
Discussion started by: pjewett
3 Replies

2. Linux

using firewall to block port

Hi, I will like to allow access to the mysql port (3306) to certain IP address. All other IP's should be automatically blocked. What is the best way to do this? (8 Replies)
Discussion started by: shantanuo
8 Replies

3. Solaris

Unable to open 3966 port in solaris

Unable to open 3966 port for buildforge in Solaris 10, anyone pls help me how to open the 3966 port in solaris. Thanks in Advance (1 Reply)
Discussion started by: durgaprasadr13
1 Replies

4. IP Networking

blocking traffic to destination network by port

I am trying to block ALL traffic except when from ports 9100,22,23 to destination network 192.0.0.0 (my WAN): 2 networks 192.0.3.0 with static route to 192.0.0.0 Shouldn't this work?: iptables -A INPUT -p tcp -d 192.0.0.0/24 --dport 22 -j ACCEPT iptables -A INPUT -p tcp -d 192.0.0.0/24... (3 Replies)
Discussion started by: herot
3 Replies

5. IP Networking

Tcp ip port open but no such process (merged: Release A Port)

i want to kill a tcp connection by killing its pid with netstat -an i got the tcp ip connection on port 5914 but when i type ps -a or ps-e there is not such process running on port 5914 is it possible that because i do not log on with proper user account i can not see that process running? (30 Replies)
Discussion started by: alinamadchian
30 Replies

6. UNIX for Advanced & Expert Users

Linux bridged firewall - monitor traffic & block IP

Hi All, I successfully configured a DEBIAN Lenny bridged firewall using ebtables. The bridged interface is br0. The ethernet interface are eth0 & eth1 respectively. All the traffic are transparently passing my firewall but i need to find & block temporarily the bandwidth abusers. Can... (1 Reply)
Discussion started by: coolatt
1 Replies

7. UNIX for Dummies Questions & Answers

Rsync port and firewall

hi guys I doing some collocation for a customer, customer requested to use other port for ssh not the default one. OK no problem and customer will be using rsync to sync backups among other things I know we have to open port let's say port 5999 for ssh since we are using that one now but I... (1 Reply)
Discussion started by: karlochacon
1 Replies

8. Red Hat

Unable to Open port 8080

Hi Experts, I am receiving below error while trying to connect port 8080. Could not open connection to the host, on port 8080 : connection refused. iptables configuration /etc/sysconfig/iptables # Firewall configuration written by system-config-firewall # Manual customization of... (1 Reply)
Discussion started by: sai_2507
1 Replies

9. Infrastructure Monitoring

How do I know what traffic is in network port?

If I would like to know what connection , data , traffic in a network port ( eth0 ) , what can I do ? ps. because I always found the network is very slow , so I would like what the network port is doing . Thanks Login ID ust3 is currently in read-only mode for multiple infractions. Creating... (0 Replies)
Discussion started by: ust03
0 Replies

10. AIX

How to re-route traffic from one port to another?

Hi Friends, How to do port forwarding in AIX? We would like to re route traffic from port A to port B on AIX LPAR. for example: my application is using 8080 port on LPAR and would like to use the 8081 instead of 8080. By default application was configured with 8080. But instead of changing... (2 Replies)
Discussion started by: System Admin 77
2 Replies

LEARN ABOUT CENTOS

firewalld.zones

FIREWALLD.ZONES(5)						  firewalld.zones						FIREWALLD.ZONES(5)

NAME

       firewalld.zones - firewalld zones

DESCRIPTION

   What is a zone?
       A network zone defines the level of trust for network connections. This is a one to many relation, which means that a connection can only
       be part of one zone, but a zone can be used for many network connections.

       The zone defines the firewall features that are enabled in this zone:

       Predefined services
	   A service is a combination of port and/or protocol entries. Optionally netfilter helper modules can be added and also a IPv4 and IPv6
	   destination address.

       Ports and protocols
	   Definition of tcp or udp ports, where ports can be a single port or a port range.

       ICMP blocks
	   Blocks selected Internet Control Message Protocol (ICMP) messages. These messages are either information requests or created as a reply
	   to information requests or in error conditions.

       Masquerading
	   The addresses of a private network are mapped to and hidden behind a public IP address. This is a form of address translation.

       Forward ports
	   A forward port is either mapped to the same port on another host or to another port on the same host or to another port on another
	   host.

       Rich language rules
	   The rich language extends the elements (service, port, icmp-block, masquerade and forward-port) with additional source and destination
	   addresses, logging, actions and limits for logs and actions. It can also be used for host or network white and black listing (for more
	   information, please have a look at firewalld.richlanguage(5)).

       For more information on the zone file format, please have a look at firewalld.zone(5).

   Which zones are available?
       Here are the zones provided by firewalld sorted according to the default trust level of the zones from untrusted to trusted:

       drop
	   Any incoming network packets are dropped, there is no reply. Only outgoing network connections are possible.

       block
	   Any incoming network connections are rejected with an icmp-host-prohibited message for IPv4 and icmp6-adm-prohibited for IPv6. Only
	   network connections initiated within this system are possible.

       public
	   For use in public areas. You do not trust the other computers on networks to not harm your computer. Only selected incoming connections
	   are accepted.

       external
	   For use on external networks with masquerading enabled especially for routers. You do not trust the other computers on networks to not
	   harm your computer. Only selected incoming connections are accepted.

       dmz
	   For computers in your demilitarized zone that are publicly-accessible with limited access to your internal network. Only selected
	   incoming connections are accepted.

       work
	   For use in work areas. You mostly trust the other computers on networks to not harm your computer. Only selected incoming connections
	   are accepted.

       home
	   For use in home areas. You mostly trust the other computers on networks to not harm your computer. Only selected incoming connections
	   are accepted.

       internal
	   For use on internal networks. You mostly trust the other computers on the networks to not harm your computer. Only selected incoming
	   connections are accepted.

       trusted
	   All network connections are accepted.

   Which zone should be used?
       A public WIFI network connection for example should be mainly untrusted, a wired home network connection should be fairly trusted. Select
       the zone that best matches the network you are using.

   How to configure or add zones?
       To configure or add zones you can either use one of the firewalld interfaces to handle and change the configuration: These are the
       graphical configuration tool firewall-config, the command line tool firewall-cmd or the D-BUS interface. Or you can create or copy a zone
       file in one of the configuration directories.  /usr/lib/firewalld/zones is used for default and fallback configurations and
       /etc/firewalld/zones is used for user created and customized configuration files.

   How to set or change a zone for a connection?
       The zone is stored into the ifcfg of the connection with ZONE=option. If the option is missing or empty, the default zone set in firewalld
       is used.

       If the connection is controlled by NetworkManager, you can also use nm-connection-editor to change the zone.

SEE ALSO

       firewall-applet(1), firewalld(1), firewall-cmd(1), firewall-config(1), firewalld.conf(5), firewalld.direct(5), firewalld.icmptype(5),
       firewalld.lockdown-whitelist(5), firewall-offline-cmd(1), firewalld.richlanguage(5), firewalld.service(5), firewalld.zone(5),
       firewalld.zones(5)

NOTES

       firewalld home page at fedorahosted.org:
	   http://fedorahosted.org/firewalld/

       More documentation with examples:
	   http://fedoraproject.org/wiki/FirewallD

AUTHORS

       Thomas Woerner <twoerner@redhat.com>
	   Developer

       Jiri Popelka <jpopelka@redhat.com>
	   Developer

firewalld 0.3.9 														FIREWALLD.ZONES(5)
All times are GMT -4. The time now is 10:11 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy