Up to Discussions in Openfire Support

This Question is Possibly Answered

1 "correct" answer available (10 pts) 1 "helpful" answer available (5 pts)
1,220 Views 4 Replies Last post: Jan 9, 2009 6:31 AM by Todd Getz RSS
jcorreia Bronze
jcorreia
108 posts since
Mar 29, 2005
Currently Being Moderated

Dec 19, 2008 3:20 AM

how to block port 9090 with iptables ?

HI,

I want to block my local ports 9090 e 9091 in iptables, so I need to do a ssh port forwarding with putty to access admin area, for security matters.

I know how to do the port forward, but I don´t know the right way to fo that with iptables, and I´m afraid to mess something.

 

Can you help me with the iptables command ?

 

Thanks,

Jcorreia

Walter Ebeling Silver
Walter Ebeling
128 posts since
Oct 25, 2006
Currently Being Moderated
Dec 19, 2008 7:33 AM in response to: jcorreia
Re: how to block port 9090 with iptables ?

Hi,

 

I had a similar problem regarding IPTables and port forwarding. The best tutorials for me were here:

 

http://iptables-tutorial.frozentux.net/iptables-tutorial.html

 

http://kreiger.linuxgods.com/kiki/?Port+forwarding+with+netfilter

 

You will have to do some try and error, but in the end it will work.

 

Regards

 

Walter

jcorreia Bronze
jcorreia
108 posts since
Mar 29, 2005
Currently Being Moderated
Jan 9, 2009 3:38 AM in response to: Walter Ebeling
Re: how to block port 9090 with iptables ?

Thanks,

but I can´t make this move because I use the plugin 'User Service' to update the users password from a intranet site, which makes request trough http requests.

 

Is there anyway to update a user info, So I can block the web admin interface ?

Thanks

Jason L Gold
Jason L
272 posts since
May 2, 2007
Currently Being Moderated
Jan 9, 2009 6:03 AM in response to: jcorreia
Re: how to block port 9090 with iptables ?

http://www.google.com/search?q=iptables+block+port&ie=utf-8&oe=utf-8&aq=t&rls=or g.mozilla:en-US:official&client=firefox-a&safe=on

 

maybe something like this

iptables -A INPUT -p tcp -i <internal NIC>  --dport 9090 -j REJECT

 

does the user plugin work with https and port 9091?

Todd Getz KeyContributor
Todd Getz
3,300 posts since
Apr 2, 2007
Currently Being Moderated
Jan 9, 2009 6:31 AM in response to: jcorreia
Re: how to block port 9090 with iptables ?

I would look into setting a rule that will disallow access to the admin console except from specific IPs that you wish to allow for management.

More Like This

  • Retrieving data ...

Bookmarked By (0)