Login or Register to Ask a Question and Join Our Community


IP Networking

problem opening TCP ports

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums IP Networking problem opening TCP ports
# 1  
Old 04-29-2008
Data problem opening TCP ports
Please can somebody help me. I'm trying to open ports 999, 1982 and 1983 but am not having much luck. I used
iptables -A INPUT -i eth0 -p tcp --sport 999 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A INPUT -i eth0 -p tcp --sport 1982 -m state --state NEW,ESTABLISHED -j ACCEPT
iptables -A INPUT -i eth0 -p tcp --sport 1983 -m state --state NEW,ESTABLISHED -j ACCEPT
to open the ports but haven't been successful. I was told to make sure that your server TCP ports: 999, 1982, 1983 are fully open inbound and outbound and that destination IP address for those ports is 72.232.181.106.
I've been trying for ages to get these ports open, but haven't had any luck.
This is the first time I've ever used a dedicated server and I am very new to all of this so I in advance for lack of knowledgeSmilie

Thanks
# 2  
Old 04-30-2008
man iptables
There is difference b/w -A (Append) option and -I (Insert). Probably you may have DROP/REJECT policy and you APPENDING ACCEPT policy so that ACCEPT will not considered if any DROP/REJECT will match before. Best you can do is to replace -A with -I in our posted iptables commands.
# 3  
Old 04-30-2008
I changed A to I, but it still doesn't seem to work. This is what I get:
Code:
Last login: Wed Apr 30 09:53:57 on console
Macintosh-2:~ lucyohara$ ssh root@213.171.206.28
root@213.171.206.28's password: 
Last login: Tue Apr 29 19:42:49 2008 from 78.146.65.6
[root@localhost ~]# iptables -I INPUT -i eth1 -p tcp --sport 999 -m state --state NEW,ESTABLISHED -j ACCEPT
[root@localhost ~]# iptables -I INPUT -i eth1 -p tcp --sport 1982 -m state --state NEW,ESTABLISHED -j ACCEPT
[root@localhost ~]# iptables -I INPUT -i eth1 -p tcp --sport 1983 -m state --state NEW,ESTABLISHED -j ACCEPT
[root@localhost ~]# iptables-save
# Generated by iptables-save v1.3.5 on Wed Apr 30 10:16:05 2008
*filter
:INPUT ACCEPT [112715:32372866]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [129770:72226245]
-A INPUT -i eth1 -p tcp -m tcp --sport 1983 -m state --state NEW,ESTABLISHED -j ACCEPT 
-A INPUT -i eth1 -p tcp -m tcp --sport 1982 -m state --state NEW,ESTABLISHED -j ACCEPT 
-A INPUT -i eth1 -p tcp -m tcp --sport 999 -m state --state NEW,ESTABLISHED -j ACCEPT 
COMMIT
# Completed on Wed Apr 30 10:16:05 2008
[root@localhost ~]#

I'm trying to open the ports so that video can be streamed on the site, but the video still isn't showing at all
# 4  
Old 04-30-2008
The netfilter user mailinglist
Please join that list from link http://www.netfilter.org/mailinglists.html#ml-user

Possibly your video application/protocol requires a netfilter helper. That protocl might NOT support NAT traversal. Usually it requires a complete network as well protocol understanding to setup a firewall.
# 5  
Old 04-30-2008
Thanks, I'll have a look at that
# 6  
Old 04-30-2008
I've been able to access the filewall file and the results by going to vi /etc/sysconfig/firewall

This will make the rules persistent across reboots. You can see the general commands to open ports up if you search for the appropriately commented areas.are:
Code:
#!/bin/sh

#fix for passive ftp connection tracking
/sbin/modprobe ip_conntrack_ftp

# Drop ICMP echo request messages sent to multicast or broadcast addresses
echo 1 > /proc/sys/net/ipv4/icmp_echo_ignore_broadcasts

# Drop source routed packets
echo 0 > /proc/sys/net/ipv4/conf/all/accept_source_route

# Enable TCP SYS cookie (DoS) protection
echo 1 > /proc/sys/net/ipv4/tcp_syncookies

# Don't accept ICMP redirect messages
echo 0 > /proc/sys/net/ipv4/conf/all/accept_redirects

# Don't send ICMP redirect messages
echo 0 > /proc/sys/net/ipv4/conf/all/send_redirects

# Enable source address spoofing protection
echo 1 > /proc/sys/net/ipv4/conf/all/rp_filter

"/etc/sysconfig/firewall" 88L, 3244C

does that mean anything?
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Opening TCP ports

I'm not sure if this is the right place for this post, but I'd be grateful if somebody could please help me. I'm trying to open ports 999, 1982 and 1983 but am not having much luck. I used iptables -A INPUT -i eth0 -p tcp --sport 999 -m state --state NEW,ESTABLISHED -j ACCEPT iptables -A INPUT -i... (2 Replies)
Discussion started by: thehaapyappy
2 Replies

2. UNIX for Advanced & Expert Users

TCP slow access though certain ports

hi, I'm currently running with an issue whereby we are experiencing very poor access speeds to our Informix database. Connections or requests to the DB are taking in excess of 2/3/4 minutes during peek periods during the day. This has only just started to happen but so far we have been unable to... (0 Replies)
Discussion started by: fastyan
0 Replies

3. AIX

Opening ports

Hi guys, I need to open ports on my AIX machine. The only way I know is to use service name to disable or enable ports which are used by the services. I found in /etc/services that the ports are unidentified. Btw, I want to open port number 11576 and 11577. Need help on this one. Thanks! :) (1 Reply)
Discussion started by: raskita
1 Replies

4. Windows & DOS: Issues & Discussions

TCP ports and file sharing

In using a music file sharing program (WinMx), I am told that I cannot make a primary connection (fastest downloads) because I do not have a TCP and UDP port. I am running Windows Me.What do I do? Thanks. (6 Replies)
Discussion started by: dookster5
6 Replies

5. UNIX for Advanced & Expert Users

TCP ports - TIME_WAIT

What is the maximum number of TCP ports that can be consumed at any one time? How can I determine what the number is or increase it? I was under the impression that with our system (UnixWare 7.1.1) 1024 was the maximum under our current Kernel tuning parms, but I think that is really just... (4 Replies)
Discussion started by: dlkox
4 Replies

6. IP Networking

TCP/UDP Ports

Just wondering if anyone knows of any good on-line documentation on TCP/UDP Ports. Basically i want to know how to check if they are in use, learn how to close them, etc... Thanks... (5 Replies)
Discussion started by: eugene_mayo
5 Replies

7. UNIX for Dummies Questions & Answers

TCP/UDP Ports

Just starting to work with unix, wondering if there is any good on-line documentation explaining TCP/UDP ports, how to use them, etc... Thanks.... (1 Reply)
Discussion started by: eugene_mayo
1 Replies

8. UNIX for Dummies Questions & Answers

TCP Listening Ports

Hello all, Can someone instruct me on how to change the listening port for ftp ( or any tcp service) from 21 to another port number? Thanks in advance.. -AJ (3 Replies)
Discussion started by: jacobsa
3 Replies

9. Cybersecurity

opening ports

I need to open a port in linux to allow a connect() from another box to succeed. I have the linux box listening on port 3000 on INADDR_ANY, and a Windows box does a connect to the IP of the linux box on that same port. The Linux box refuses the connection. I think it's because all the ports are... (9 Replies)
Discussion started by: dryheat
9 Replies

10. IP Networking

TCP Ports

We are being setup with a client over their VPN to support them remotely. We are unable to access their VPN through our server, they said to look and make sure that the TCP ports are enabled for their security setup (ports are in the 4000 range). How do you look for this and how do you enable a... (3 Replies)
Discussion started by: blacksheep
3 Replies
Login or Register to Ask a Question