Chain RH-Firewall-1-INPUT (2 references) target prot opt source destination ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmp type 255 ACCEPT esp -- 0.0.0.0/0 0.0.0.0/0 ACCEPT ah -- 0.0.0.0/0 0.0.0.0/0 ACCEPT udp -- 0.0.0.0/0 224.0.0.251 udp dpt:5353 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:631 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:631 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:21 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:137 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 state NEW udp dpt:138 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:139 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:445 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:443 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:23 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:80 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:18000 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:28000 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:3456 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:8000 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:8999
2011/5/26 Thiago Gomes thiagomespb@gmail.com:
Starting Nmap 4.11 ( http://www.insecure.org/nmap/ ) at 2011-05-26 15:21 BRT Interesting ports on sdealer-cvl (127.0.0.1): Not shown: 65526 closed ports PORT STATE SERVICE 139/tcp open netbios-ssn 445/tcp open microsoft-ds 631/tcp open ipp
Em 26 de maio de 2011 15:19, Gabriel Ricardo gricardo87@gmail.com escreveu:
não tem como ver no syslog? o que esta ocorrento, talvez tenha alguma reclamacao la
Atenciosamente, Gabriel Ricardo. Skype: gricardo87 MSN: gricardo87@gmail.com Twitter: twitter.com/gricardo87 Blog: www.tinotapa.com.br
2011/5/26 Thiago Gomes thiagomespb@gmail.com
/etc/rc.d/init.d/xinetd start Starting xinetd: [ OK ] # telnet localhost Trying 127.0.0.1... telnet: connect to address 127.0.0.1: Connection refused telnet: Unable to connect to remote host: Connection refused # chkconfig telnet on # telnet localhost Trying 127.0.0.1... telnet: connect to address 127.0.0.1: Connection refused telnet: Unable to connect to remote host: Connection refused
# /etc/rc.d/init.d/xinetd restart Stopping xinetd: [FAILED] Starting xinetd:
# sestatus SELinux status: disabled
Em 26 de maio de 2011 15:05, Luiz Henrique Borges lhsborges@gmail.com escreveu:
É isso ai. Me esqueci desse detalhe!
Em 26 de maio de 2011 15:02, Lucas Timm LH linuxhelper@gmail.com escreveu:
Precisa sim, o telnet-server é componente do Xinetd. Vai dizer que você sai instalando coisas a esmo sem ler a descrição do pacote? Dá um yum info telne-server... 2011/5/26 Thiago Gomes thiagomespb@gmail.com
nao precisa instalar o telnet-server ? como então eu removo ?
2011/5/26 Lucas Timm LH linuxhelper@gmail.com: > @Thiago Gomes > O servidor telnet roda dentro do xinet server. Assim o controle do > serviço é > feito pelo daemon xinetd. > > 2011/5/26 Lucas Timm LH linuxhelper@gmail.com >> >> service xinetd restart? Olha o iptables também. Aqui na empresa eu >> tenho o >> telnet-server rodando no servidor principal, funciona muito bem. >> [root@rhel01 etc]# uptime >> 14:53:11 up 54 days, 7:58, 538 users, load average: 0.86, 0.61, >> 0.45 >> [root@rhel01 etc]# >> [root@rhel01 etc]# cat /etc/xinetd.d/telnet >> # default: on >> # description: The telnet server serves telnet sessions; it uses \ >> # unencrypted username/password pairs for authentication. >> service telnet >> { >> flags = REUSE >> socket_type = stream >> wait = no >> user = root >> server = /usr/sbin/in.telnetd >> log_on_failure += USERID >> disable = no >> } >> [root@rhel01 etc]# >> >> >> >> 2011/5/26 Thiago Gomes thiagomespb@gmail.com >>> >>> veja isso >>> >>> service telnet start >>> telnet: unrecognized service >>> # yum install telnet-server >>> Loaded plugins: fastestmirror >>> Loading mirror speeds from cached hostfile >>> * addons: centos.argohost.net >>> * base: centos.argohost.net >>> * extras: centos.argohost.net >>> * rpmforge: fr2.rpmfind.net >>> * updates: centos.argohost.net >>> Excluding Packages in global exclude list >>> Finished >>> Setting up Install Process >>> Package 1:telnet-server-0.17-39.el5.i386 already installed and >>> latest >>> version >>> Nothing to do >>> >>> estranho... o telnet-server esta instalado >>> >>> >>> Em 26 de maio de 2011 14:32, Luiz Henrique Borges >>> lhsborges@gmail.com escreveu: >>> > service telnet status >>> > >>> > Me parece que o serviço não está rodando!!! >>> > >>> > Em 26 de maio de 2011 14:24, Thiago Gomes >>> > thiagomespb@gmail.com >>> > escreveu: >>> >> >>> >> nada.. >>> >> >>> >> >>> >> Em 26 de maio de 2011 14:13, Luiz Henrique Borges >>> >> lhsborges@gmail.com escreveu: >>> >> > telnet não, coloca o número 23 no filtro. >>> >> > >>> >> > 2011/5/26 Thiago Gomes thiagomespb@gmail.com >>> >> >> >>> >> >> #netstat -a | grep telnet >>> >> >> # >>> >> >> >>> >> >> nada.. >>> >> >> >>> >> >> 2011/5/26 Luiz Henrique Borges lhsborges@gmail.com: >>> >> >> > netstat -tunape | grep -i 23 >>> >> >> > >>> >> >> > O seviço está em LISTEN, ouvindo na porta 23? Cole o >>> >> >> > retorno >>> >> >> > desse >>> >> >> > comando >>> >> >> > pra gente!!! >>> >> >> > >>> >> >> > O firewall não está barrando? >>> >> >> > >>> >> >> > 2011/5/26 Thiago Gomes thiagomespb@gmail.com >>> >> >> >> >>> >> >> >> Pessoal, >>> >> >> >> >>> >> >> >> Estou com erro de configurar o meu servidor via telnet. >>> >> >> >> >>> >> >> >> fiz a instalação.. >>> >> >> >> >>> >> >> >> #yum install telnet-server >>> >> >> >> >>> >> >> >> # telnet localhost >>> >> >> >> Trying 127.0.0.1... >>> >> >> >> telnet: connect to address 127.0.0.1: Connection refused >>> >> >> >> telnet: Unable to connect to remote host: Connection >>> >> >> >> refused >>> >> >> >> >>> >> >> >> >>> >> >> >> #/etc/init.d/xinetd reload >>> >> >> >> Reloading configuration: >>> >> >> >> [FAILED] >>> >> >> >> >>> >> >> >> #chkconfig --list | grep telnet >>> >> >> >> ekrb5-telnet: off >>> >> >> >> krb5-telnet: off >>> >> >> >> telnet: on >>> >> >> >> >>> >> >> >> >>> >> >> >> service telnet >>> >> >> >> { >>> >> >> >> disable = no >>> >> >> >> flags = REUSE >>> >> >> >> socket_type = stream >>> >> >> >> wait = no >>> >> >> >> user = root >>> >> >> >> server = /usr/sbin/in.telnetd >>> >> >> >> log_on_failure += USERID >>> >> >> >> } >>> >> >> >> >>> >> >> >> >>> >> >> >> >>> >> >> >> Falta alguma coisa. ?? >>> >> >> >> >>> >> >> >> -- >>> >> >> >> Thiago Gomes >>> >> >> >> _______________________________________________ >>> >> >> >> CentOS-pt-br mailing list >>> >> >> >> CentOS-pt-br@centos.org >>> >> >> >> http://lists.centos.org/mailman/listinfo/centos-pt-br >>> >> >> > >>> >> >> > >>> >> >> > >>> >> >> > -- >>> >> >> > Luiz Henrique Borges >>> >> >> > >>> >> >> > Junior Level Linux Professional (LPIC-1) >>> >> >> > LPI ID: LPI000214825 >>> >> >> > Verification Code: akdd5dsk5t >>> >> >> > https://cs.lpi.org/caf/Xamman/certification >>> >> >> > >>> >> >> > Novell Certified Linux Administrator >>> >> >> > Data Center Technical Specialist >>> >> >> > >>> >> >> > >>> >> >> > _______________________________________________ >>> >> >> > CentOS-pt-br mailing list >>> >> >> > CentOS-pt-br@centos.org >>> >> >> > http://lists.centos.org/mailman/listinfo/centos-pt-br >>> >> >> > >>> >> >> > >>> >> >> >>> >> >> >>> >> >> >>> >> >> -- >>> >> >> Thiago Gomes >>> >> >> _______________________________________________ >>> >> >> CentOS-pt-br mailing list >>> >> >> CentOS-pt-br@centos.org >>> >> >> http://lists.centos.org/mailman/listinfo/centos-pt-br >>> >> > >>> >> > >>> >> > >>> >> > -- >>> >> > Luiz Henrique Borges >>> >> > >>> >> > Junior Level Linux Professional (LPIC-1) >>> >> > LPI ID: LPI000214825 >>> >> > Verification Code: akdd5dsk5t >>> >> > https://cs.lpi.org/caf/Xamman/certification >>> >> > >>> >> > Novell Certified Linux Administrator >>> >> > Data Center Technical Specialist >>> >> > >>> >> > >>> >> > _______________________________________________ >>> >> > CentOS-pt-br mailing list >>> >> > CentOS-pt-br@centos.org >>> >> > http://lists.centos.org/mailman/listinfo/centos-pt-br >>> >> > >>> >> > >>> >> >>> >> >>> >> >>> >> -- >>> >> Thiago Gomes >>> >> _______________________________________________ >>> >> CentOS-pt-br mailing list >>> >> CentOS-pt-br@centos.org >>> >> http://lists.centos.org/mailman/listinfo/centos-pt-br >>> > >>> > >>> > >>> > -- >>> > Luiz Henrique Borges >>> > >>> > Junior Level Linux Professional (LPIC-1) >>> > LPI ID: LPI000214825 >>> > Verification Code: akdd5dsk5t >>> > https://cs.lpi.org/caf/Xamman/certification >>> > >>> > Novell Certified Linux Administrator >>> > Data Center Technical Specialist >>> > >>> > >>> > _______________________________________________ >>> > CentOS-pt-br mailing list >>> > CentOS-pt-br@centos.org >>> > http://lists.centos.org/mailman/listinfo/centos-pt-br >>> > >>> > >>> >>> >>> >>> -- >>> Thiago Gomes >>> _______________________________________________ >>> CentOS-pt-br mailing list >>> CentOS-pt-br@centos.org >>> http://lists.centos.org/mailman/listinfo/centos-pt-br >> >> >> >> -- >> Lucas Timm, Goiânia/GO. >> http://timmerman.wordpress.com >> >> (62) 8198-0867 > > > > -- > Lucas Timm, Goiânia/GO. > http://timmerman.wordpress.com > > (62) 8198-0867 > > _______________________________________________ > CentOS-pt-br mailing list > CentOS-pt-br@centos.org > http://lists.centos.org/mailman/listinfo/centos-pt-br > >
-- Thiago Gomes _______________________________________________ CentOS-pt-br mailing list CentOS-pt-br@centos.org http://lists.centos.org/mailman/listinfo/centos-pt-br
-- Lucas Timm, Goiânia/GO. http://timmerman.wordpress.com
(62) 8198-0867
CentOS-pt-br mailing list CentOS-pt-br@centos.org http://lists.centos.org/mailman/listinfo/centos-pt-br
-- Luiz Henrique Borges
Junior Level Linux Professional (LPIC-1) LPI ID: LPI000214825 Verification Code: akdd5dsk5t https://cs.lpi.org/caf/Xamman/certification
Novell Certified Linux Administrator Data Center Technical Specialist
CentOS-pt-br mailing list CentOS-pt-br@centos.org http://lists.centos.org/mailman/listinfo/centos-pt-br
-- Thiago Gomes _______________________________________________ CentOS-pt-br mailing list CentOS-pt-br@centos.org http://lists.centos.org/mailman/listinfo/centos-pt-br
CentOS-pt-br mailing list CentOS-pt-br@centos.org http://lists.centos.org/mailman/listinfo/centos-pt-br
-- Thiago Gomes