You are not logged in.
- Topics: Active | Unanswered
Pages: 1
#1 2006-06-29 03:36:46
- acetylcholine
- Member
- From: NY, USA
- Registered: 2004-11-07
- Posts: 46
- Website
port probing
I have an iptables.rules based firewall.
So basically, I open every port that I use with something like
-A open -p udp --dport 5353 -j ACCEPT
I recently installed avahi and it was blocked by the firewall. I googled some and figured out that I needed to open port 5353
Is there a way to probe what ports a process is trying to access (in order to know which ones to open)?
Offline
#2 2006-06-29 10:08:27
- T-Dawg
- Forum Fellow
- From: Charlotte, NC
- Registered: 2005-01-29
- Posts: 2,736
Re: port probing
take a look at nmap
Offline
#3 2006-06-29 10:31:39
- Bebo
- Member
- From: Göteborg, Sweden
- Registered: 2006-06-07
- Posts: 207
Re: port probing
You can also use netstat -natp or lsof -i to find out what addresses and ports are used by processes on your local machine.
On the Avahi FAQ it says that you need to allow traffic to and from UDP port 5353. Did you do that, or do you only allow traffic in one direction?
Offline
#4 2006-06-29 17:03:43
- Bebo
- Member
- From: Göteborg, Sweden
- Registered: 2006-06-07
- Posts: 207
Re: port probing
D'oh, I missed the -u switch for netstat. It's needed if you want to see UDP ports as well: netstat -natup
Offline
#5 2006-06-30 03:01:19
- acetylcholine
- Member
- From: NY, USA
- Registered: 2004-11-07
- Posts: 46
- Website
Re: port probing
Thanks guys. The outgoing traffic should be covered by the established/related rule that I have in there.
Offline
#6 2006-06-30 07:54:59
- Bebo
- Member
- From: Göteborg, Sweden
- Registered: 2006-06-07
- Posts: 207
Re: port probing
Maybe I'm misinterpreting what you say - "the established/related rule that I have in there" sound like singular. You'll have to put an ACCEPT rule in the INPUT and OUTPUT tables both. But maybe that's not the issue here 
Offline
#7 2006-07-01 00:56:35
- acetylcholine
- Member
- From: NY, USA
- Registered: 2004-11-07
- Posts: 46
- Website
Re: port probing
Yeah, you're right. I DO only have it input... but I have:
-A OUTPUT -j open
# there is a similar line for input, straight from the wiki :)and then
# mt-daapd and the daap protocol (needed for avahi out)
# heh, turns out i needed more ports :P
-A open -p tcp --dport 3689 -j ACCEPT
-A open -p udp --dport 3689 -j ACCEPT
# avahi-daemon
-A open -p tcp --dport 5353 -j ACCEPT
-A open -p udp --dport 5353 -j ACCEPTThis way the open chain I made goes to input and output both.
Good eye!! Thanks again, this issue is resolved now.
Offline
#8 2006-07-01 01:21:10
- Bebo
- Member
- From: Göteborg, Sweden
- Registered: 2006-06-07
- Posts: 207
Re: port probing
Good to hear!
For clarification (although slightly unnecessary), when I said "INPUT and OUTPUT tables" above, I actually meant chains, not tables. Oh, well
Offline
Pages: 1