You are not logged in.

#1 2017-04-01 16:17:29

djipey
Member
Registered: 2011-07-30
Posts: 156

[iptables] how to properly open port 443 for remote access (solved)

Hi,

I setted-up my firewall with very simple rules:

# Generated by iptables-save v1.4.21 on Sat Feb  8 14:33:58 2014
*mangle
:PREROUTING ACCEPT [143165:176028974]
:INPUT ACCEPT [143132:176024006]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [122229:7373827]
:POSTROUTING ACCEPT [121843:7339737]
COMMIT
# Completed on Sat Feb  8 14:33:58 2014
# Generated by iptables-save v1.4.21 on Sat Feb  8 14:33:58 2014
*filter
:INPUT DROP [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [3601:205614]
-A INPUT -p tcp -m tcp --dport 443 -j ACCEPT
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -m conntrack --ctstate INVALID -j DROP

COMMIT
# Completed on Sat Feb  8 14:33:58 2014

I've always been using this set of rules.

Today, I have a server running on port 443. I would like to open this port to allow remote access to the server. However, with the set of rules above, it doesn't work. It seems the firewall won't let me access the server.

I tried to open port 443 with line 15 (see code above), but I don't think I did it properly.

Could you give me a hand please ?

Last edited by djipey (2017-04-01 17:15:33)

Offline

#2 2017-04-01 16:54:29

brebs
Member
Registered: 2007-04-03
Posts: 3,742

Re: [iptables] how to properly open port 443 for remote access (solved)

Maybe you need to open for udp, as well as tcp?

Can use logndrop, rather than blindly DROPping, for debugging.

Offline

#3 2017-04-01 17:15:20

djipey
Member
Registered: 2011-07-30
Posts: 156

Re: [iptables] how to properly open port 443 for remote access (solved)

udp made it, thanks...

Offline

Board footer

Powered by FluxBB