You are not logged in.
Pages: 1
Hello all.
I make this
# iptables -A INPUT -p tcp --dport 555 -j ACCEPT
and port is closed still(it's okay with port forwarding on router). what should i do? thank you.
Last edited by tlq (2012-05-22 16:52:16)
Offline
What makes you think the port's still "closed"? What's listening on that port (which service)?
Burninate!
Offline
There is my php-daemon on this port. I can't connect to port by telnet, www.canyouseeme.org can't too.
ps
this daemon perfectly works on two other machines(on centos).
Last edited by tlq (2012-05-22 07:26:16)
Offline
Can you telnet to the daemon locally (telnet localhost 555)?
Burninate!
Offline
No, I can't. What 'iptables -nvL' gives
Chain INPUT (policy ACCEPT 212 packets, 22390 bytes)
pkts bytes target prot opt in out source destination
6 304 ACCEPT tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpt:555
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 197 packets, 19519 bytes)
pkts bytes target prot opt in out source destination
Offline
Ok, if you can't connect locally then there's no need to worry about portforwarding etc yet.
Could you post the output of the following?
# ip addr
# ss -a
Burninate!
Offline
[root@myhost ~]# ip addr
1: lo: <LOOPBACK,UP,LOWER_UP> mtu 16436 qdisc noqueue state UNKNOWN
link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
inet 127.0.0.1/8 scope host lo
inet6 ::1/128 scope host
valid_lft forever preferred_lft forever
2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast state UP qlen 1000
link/ether 00:15:58:8e:6c:88 brd ff:ff:ff:ff:ff:ff
inet 192.168.1.111/24 brd 192.168.1.255 scope global eth0
inet6 fe80::215:58ff:fe8e:6c88/64 scope link
valid_lft forever preferred_lft forever
[root@myhost ~]# ss -a
State Recv-Q Send-Q Local Address:Port Peer Address:Port
LISTEN 0 5 *:ftp *:*
LISTEN 0 0 *:50422 *:*
LISTEN 0 128 :::ssh :::*
LISTEN 0 128 *:ssh *:*
LISTEN 0 50 *:mysql *:*
LISTEN 0 128 :::http :::*
ESTAB 0 0 192.168.1.111:mysql 83.244.244.4:51239
ESTAB 0 0 192.168.1.111:51239 83.244.244.4:mysql
ESTAB 0 52 192.168.1.111:ssh 83.244.244.4:54365
ESTAB 0 0 192.168.1.111:ftp 192.168.1.51:60324
Ok, if you can't connect locally then there's no need to worry about portforwarding etc yet.
okay. but port 555 is still forwarded to 192.168.1.111
Last edited by tlq (2012-05-22 07:53:32)
Offline
Unless I'm overlooking something (it's still relatively early in the morning here), you don't seem to have anything listening on port 555.
Burninate!
Offline
Hah On these listings daemon doesn't working. I turned on the daemon, and there is strange string in listing:
[root@myhost ~]# ss -a
State Recv-Q Send-Q Local Address:Port Peer Address:Port
LISTEN 0 5 *:ftp *:*
LISTEN 0 128 :::ssh :::*
LISTEN 0 128 *:ssh *:*
LISTEN 0 50 *:mysql *:*
LISTEN 0 10 192.168.1.111:dsf *:*
LISTEN 0 128 :::http :::*
FIN-WAIT-1 0 1 192.168.1.111:ssh 85.26.231.66:etb4j
TIME-WAIT 0 0 192.168.1.111:ftp-data 192.168.1.51:63002
ESTAB 0 232 192.168.1.111:ssh 83.244.244.4:62319
ESTAB 0 0 192.168.1.111:ssh 83.244.244.4:54365
TIME-WAIT 0 0 192.168.1.111:ftp-data 192.168.1.51:62997
ESTAB 0 0 192.168.1.111:ftp 192.168.1.51:62313
What does it mean, :dsf? :-|
Offline
You can use the "-n" flag so it doesn't resolve service names. So "ss -an".
Burninate!
Offline
Thank you very much. I found the problem, it was beacause of php .
Offline
Good to hear it's working.
Don't forget to mark your thread as [SOLVED].
Burninate!
Offline
Pages: 1