You are not logged in.
- Topics: Active | Unanswered
#1 2017-04-01 16:17:29
- djipey
- Member
- Registered: 2011-07-30
- Posts: 158
[iptables] how to properly open port 443 for remote access (solved)
Hi,
I setted-up my firewall with very simple rules:
# Generated by iptables-save v1.4.21 on Sat Feb 8 14:33:58 2014
*mangle
:PREROUTING ACCEPT [143165:176028974]
:INPUT ACCEPT [143132:176024006]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [122229:7373827]
:POSTROUTING ACCEPT [121843:7339737]
COMMIT
# Completed on Sat Feb 8 14:33:58 2014
# Generated by iptables-save v1.4.21 on Sat Feb 8 14:33:58 2014
*filter
:INPUT DROP [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [3601:205614]
-A INPUT -p tcp -m tcp --dport 443 -j ACCEPT
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -m conntrack --ctstate INVALID -j DROP
COMMIT
# Completed on Sat Feb 8 14:33:58 2014I've always been using this set of rules.
Today, I have a server running on port 443. I would like to open this port to allow remote access to the server. However, with the set of rules above, it doesn't work. It seems the firewall won't let me access the server.
I tried to open port 443 with line 15 (see code above), but I don't think I did it properly.
Could you give me a hand please ?
Last edited by djipey (2017-04-01 17:15:33)
Offline
#2 2017-04-01 16:54:29
- brebs
- Member
- Registered: 2007-04-03
- Posts: 3,742
Re: [iptables] how to properly open port 443 for remote access (solved)
Maybe you need to open for udp, as well as tcp?
Can use logndrop, rather than blindly DROPping, for debugging.
Offline
#3 2017-04-01 17:15:20
- djipey
- Member
- Registered: 2011-07-30
- Posts: 158
Re: [iptables] how to properly open port 443 for remote access (solved)
udp made it, thanks...
Offline