SuSE 11.2 firewall blocks access after a few minutes

I have a fresh install of SuSE 11.2. I have installed Communigate Pro (Email server) and Webmin. From my workstation (on the same LAN), I can access the web interfaces for both CGP and Webmin right after the server boots up. But after about 10 minutes or so, I can no longer access either web interface. The server itself still functions normally. I can get on the internet with the server, and I can control Webmin via localhost:10000.

The only thing that allows me to connect to it from my workstation again is to either restart the server, or go into “Network > Linux Firewall” and click “Apply Configuration”.

What’s going on that makes my remote access stop working?

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Is there a reason you’re starting w/11.2? 11.3 has been out for quite a
while and 11.4 is already into its milestone releases (meaning it’ll be
out sooner than later).

Anyway, when it “changes” do you see lines showing up in /var/log/firewall
when you try to connect and fail? Not sure what webmin does to the system
but I have configured quite a few firewalls on SUSE and have yet to see it
change on its own when using the Yast-based stuff. It may be useful to
compare the /usr/sbin/iptables-save output before and after the problem
occurs to see if the firewall is really changing as well as in what what.

sudo /usr/sbin/iptables-save > /tmp/iptables-save-date +%s.rules

Good luck.

On 12/01/2010 02:06 PM, RyanSweeney wrote:
>
> I have a fresh install of SuSE 11.2. I have installed Communigate Pro
> (Email server) and Webmin. From my workstation (on the same LAN), I can
> access the web interfaces for both CGP and Webmin right after the server
> boots up. But after about 10 minutes or so, I can no longer access
> either web interface. The server itself still functions normally. I
> can get on the internet with the server, and I can control Webmin via
> localhost:10000.
>
> The only thing that allows me to connect to it from my workstation
> again is to either restart the server, or go into “Network > Linux
> Firewall” and click “Apply Configuration”.
>
> What’s going on that makes my remote access stop working?
>
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.15 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
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=L4oX
-----END PGP SIGNATURE-----

Is it possible something in one of the webmin firewall management modules could be causing it rather than Suse’s native one?

There’s a little about webmin firewall modules here

Webmin

On 2010-12-01 22:06, RyanSweeney wrote:

> The only thing that allows me to connect to it from my workstation
> again is to either restart the server, or go into “Network > Linux
> Firewall” and click “Apply Configuration”.

To restart the firewall, do “SuSEfirewall2” as root.


Cheers / Saludos,

Carlos E. R.
(from 11.2 x86_64 “Emerald” at Telcontar)