Soheil

Active Member
Jun 24, 2003
43
0
156
Hi guys,
I am using the ConfigServer Security and Firewall to configure the ports on the server.


I need a few ports opened. I added them to the config file, reloaded the firewall, but they are still closed.

Also checked /etc/sysconfig/iptables and it all looks smillar to the list below.

Firewall config:
TCP_IN =21,25,30,53,80,110,143,465,953,993,995,2082,2083,2084,2086,2087,2095,2096,3306,4043,6100:6199,6666,7100:7199,7676,7786,8080,8443,8100:8199

TCP_OUT=20,21,25,30,37,43,53,80,110,113,443,587,873,953,2087,2089,2703,3306,4043,6100:6199,6666,7100:7199,7676,7786,8080,8443,8100:8199

UDP_IN=20,21,30,53,953,3306,4043,6100:6199,6666,7100:7199,7676,7786,8080,8443,8100:8199

UDP_OUT=20,21,30,53,113,123,873,953,6277,3306,4043,6100:6199,6666,7100:7199,7676,7786,8080,8443,8100:8199


I need the following ports open, if anyone can help please:

995,4043,6100:6199,6666,7100:7199,7676,7786,8080,8443,8100:8199
 

Soheil

Active Member
Jun 24, 2003
43
0
156
Can anyone help please?

Here is the results of nmap:
As you can see the ports are not opened!


nmap -sT -O localhost

Starting Nmap 4.03 ( http://www.insecure.org/nmap/ ) at 2006-10-14 00:04 EDT
Interesting ports on localhost (127.0.0.1):
(The 1659 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE
1/tcp open tcpmux
21/tcp open ftp
25/tcp open smtp
30/tcp open unknown
80/tcp open http
110/tcp open pop3
111/tcp open rpcbind
143/tcp open imap
443/tcp open https
465/tcp open smtps
783/tcp open spamassassin
993/tcp open imaps
995/tcp open pop3s
3306/tcp open mysql
7100/tcp open font-service
No exact OS matches for host (If you know what OS is running on it, see http://www.insecure.org/cgi-bin/nmap-submit.cgi).
TCP/IP fingerprint:
SInfo(V=4.03%P=i386-redhat-linux-gnu%D=10/14%Tm=453061F3%O=1%C=2)
TSeq(Class=RI%gcd=1%SI=2BCDD1%IPID=Z%TS=U)
TSeq(Class=RI%gcd=1%SI=319295%IPID=Z%TS=U)
TSeq(Class=RI%gcd=1%SI=2BCDC2%IPID=Z%TS=U)
T1(Resp=Y%DF=Y%W=8018%ACK=S++%Flags=AS%Ops=M)
T2(Resp=N)
T3(Resp=Y%DF=Y%W=8018%ACK=S++%Flags=AS%Ops=M)
T4(Resp=Y%DF=Y%W=0%ACK=O%Flags=R%Ops=)
T5(Resp=Y%DF=Y%W=0%ACK=S++%Flags=AR%Ops=)
T6(Resp=Y%DF=Y%W=0%ACK=O%Flags=R%Ops=)
T7(Resp=Y%DF=Y%W=0%ACK=S++%Flags=AR%Ops=)
PU(Resp=Y%DF=N%TOS=C0%IPLEN=164%RIPTL=148%RID=E%RIPCK=E%UCK=E%ULEN=134%DAT=E)



Nmap finished: 1 IP address (1 host up) scanned in 10.433 seconds
 

Soheil

Active Member
Jun 24, 2003
43
0
156
Hi guys,
looking at /var/log/messages I see errors showing the ports are being blocked, like:
2 Oct 08 09:31:58 Oct 08 09:33:06 00:00:01:08 Firewall: *UDP_OUT Blocked* udp 66.148.72.142 6101 82.3.109.34 4043 -

As you can see ports 6101 and 4043 are being blocked.

Anyone has any ideas?
Anything at all to get me to solve this problem would be appreciated guys.