I cannot seem to disable the firewall in 13.2. If I go through YaST, click “Stop Firewall Now”, “Next” I am still unable to hit opened ports on my machine. My test is as follows:
On the local machine (machine A) run:
nc -l localhost 9995
On a remote machine (on same LAN) run:
telnet machineAip 9995
I get “Connection refused”
The strange part is, if I start SSHD then from the remote machine I can telnet to my local machine on 22, but if I try to open 22 via my test, then i’ll get “Connection refused” on the remote machine.
So either my test if flawed or something else is going on.
Thanks for the suggestion. That’s another weird part, with the firewall disabled iptables is empty:
# iptables --list -v
Chain INPUT (policy ACCEPT 413K packets, 1396M bytes)
pkts bytes target prot opt in out source destination
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 327K packets, 23M bytes)
pkts bytes target prot opt in out source destination
If you are using explicitly “localhost” then it is probably only listening on localhost (i.e. 127.0.0.1).
Right.
The proper way to test it (and it should work, firefall is accepting connections from everywhere), would be nc -l 0.0.0.0 9995
On Mon, 20 Apr 2015 12:16:01 +0000, ikilledfiddymen wrote:
> That’s another weird part, with the firewall disabled iptables is empty
Which means “all ports are open”
Jim
–
Jim Henderson
openSUSE Forums Administrator
Forum Use Terms & Conditions at http://tinyurl.com/openSUSE-T-C
Ah yes this did indeed show my test was flawed. The firewall is working as it is supposed to. Thanks!