opening Iptables for remote tools?
-
FIrst step is determining the port numbers for those things. Some make no sense, like TCP. TCP is not a service, it is the layer four component of the TCP/IP protocol. Opening TCP simply means disabling the firewall completely. If you need TCP open, you just turn of IPTables.
-
NoMachine is a company, not a protocol. I assume that you mean NX. NX is a protocol but not a network one. It has no ports and does not go through a firewall. It rides on SSH which you should already have open to access the server. So no configuration needed at all for that.
-
VNC typically uses TCP 5900 but this is variable based on a lot of factors. You need to find out what port(s) you are using for this before you can open IPTables for it.
-
To add new open ports, once you have assembled your list of needed ports, you need to add a line like this above the reject section of your IPTables confiuration file which, on RHEL 6 and CentOS 6 is at /etc/sysconfig/iptables...
-A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
The only part that you need to change is the number "22". Change that to 5900 for VNC or whatever you need. You should have one line like this for each port that you want to open.
-
I am using Ubuntu 14.04 64 bit
-
You'll have to look for that file then. I don't have an old version of Ubuntu to verify with.
-
I just saw in another thread that @dafyre has that version. He could look for the file for you.
-
I'm using 14.04 as my daily driver. It lives under "/etc/iptables.conf".
-
@RamblingBiped said:
I'm using 14.04 as my daily driver. It lives under "/etc/iptables.conf".
Easy enough then
-
When in doubt just...
find / -name iptables.conf -print