RE: three problems

Casas, Claudia Thu, 17 Jun 2004 20:10:14 -0700

Oki doki,
I just added the port 8080 following QM suggestions and also thanks very much for your 
help. The results here: 
But unfortunately I still cannot see my http://my.ip.address:8080. Getting page cannot 
be displayed. :(
 
 
 
lsof -i :8080
COMMAND   PID USER   FD   TYPE DEVICE SIZE NODE NAME
java    22990 root    3u  IPv4  58125       TCP *:webcache (LISTEN)


iptables --list -n
Chain INPUT (policy ACCEPT)
target     prot opt source               destination         
RH-Firewall-1-INPUT  all  --  0.0.0.0/0            0.0.0.0/0          
Chain FORWARD (policy ACCEPT)
target     prot opt source               destination         
RH-Firewall-1-INPUT  all  --  0.0.0.0/0            0.0.0.0/0          
Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination         
Chain RH-Firewall-1-INPUT (2 references)
target     prot opt source               destination         
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0          
ACCEPT     icmp --  0.0.0.0/0            0.0.0.0/0          icmp typ`e 255 
ACCEPT     esp  --  0.0.0.0/0            0.0.0.0/0          
ACCEPT     ah   --  0.0.0.0/0            0.0.0.0/0          
ACCEPT     all  --  0.0.0.0/0            0.0.0.0/0          state RELATED,ESTABLISHED 
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          state NEW tcp dpt:25 
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          state NEW tcp dpt:80 
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          state NEW tcp dpt:21 
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          state NEW tcp dpt:22 
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          state NEW tcp dpt:23 
REJECT     all  --  0.0.0.0/0            0.0.0.0/0          reject-with 
icmp-host-prohibited 
           all  --  0.0.0.0/0            0.0.0.0/0          
ACCEPT     tcp  --  0.0.0.0/0            0.0.0.0/0          tcp dpt:8080 state NEW

________________________________

From: QM [mailto:[EMAIL PROTECTED]
Sent: Thu 6/17/2004 8:38 PM
To: Tomcat Users List
Subject: Re: three problems



On Thu, Jun 17, 2004 at 08:26:34PM -0600, Casas, Claudia wrote:
: lsof -i :8080
: COMMAND  PID USER   FD   TYPE DEVICE SIZE NODE NAME
: java    2801 root    3u  IPv4   7503       TCP *:webcache (LISTEN)

This is good.
(Well, technically, it's not a good idea to run Tomcat as root -- but
we'll get to that later ;)


The iptables output confirms: your firewall is configured to explicitly
allow only certain traffic.  Tomcat (port 8080) isn't in that list.

Adding it is simple:

        iptables -t filter -A RH-Firewall-1-INPUT \
                -p tcp --dport 8080     \
                -m state --state NEW -j ACCEPT

Be sure to test that out and, if it doesn't break anything else, save
your changes:

        service iptables save

-QM

--

software  -- http://www.brandxdev.net
tech news -- http://www.RoarNetworX.com


---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: three problems

Reply via email to