Well, I tried disabling iptables (well, I tried /sbin/service iptables
stop, then tried just using lokkit with a no firewall setting), to no avail.
I added the -v and checked the log file.
tftp from localhost produces a line like:
"Aug 24 20:00:09 stupiduser in.tftpd[2852]: RRQ from 127.0.0.1 filename
testfile"
and test file is downloaded correctly.
However, from an external computer, tftp produces 2 lines like:
"Aug 25 20:00:45 stupiduser in.tftpd[2867]: RRQ from XXX.XXX.XXX.XXX
filename testfile"
"Aug 25 20:00:45 stupiduser in.tftpd[2867]: tftpd: read(ack): Connection
refused"
So I'm thinking that the iptables/firewall stuff isn't the problem.
Could it be a problem with my hosts.allow/deny file? Or is it more
likely something else?
Thanks,
-Charles
Vince Hoang wrote:
I edit /etc/sysconfig/iptables all the time, but for other
services. Since tftp is such a big hole, I usually disable
iptables for the brief time tftp needs to run and leave tftp out
of the iptables configuration.
You did not mention you checking the log files for tftp requests
to confirm the service is running. Add -v to /etc/xinetd.d/tftp
while you are troubleshooting and restart xinetd.
If your laptop is on an internal network, disable iptables for
a bit to verify that the service is running properly. /tftpboot
needs some rather liberal permissions so be sure to reable
iptables relatively quickly.
-Vince
