On Fri, Oct 11, 2013 at 3:42 PM, Terre Porter tporter@webpage-builders.comwrote:
Try this, iptables dump from my fresh install, with ssh allow and the vnc you referenced.
Terre
# Generated by iptables-save v1.4.7 on Fri Oct 11 17:39:52 2013 *filter :INPUT ACCEPT [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [45:7091] -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -p icmp -j ACCEPT -A INPUT -i lo -j ACCEPT -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT -A INPUT -m state --state NEW -m tcp -p tcp -m multiport --dports 5901:5903,6001:6003 -j ACCEPT -A INPUT -j REJECT --reject-with icmp-host-prohibited -A FORWARD -j REJECT --reject-with icmp-host-prohibited COMMIT # Completed on Fri Oct 11 17:39:52 2013
OK, with this file I'm getting connection timed out - before I was getting connection refused so I guess that's some progress.
-----Original Message----- From: centos-bounces@centos.org [mailto:centos-bounces@centos.org] On Behalf Of Larry Martell Sent: Friday, October 11, 2013 5:36 PM To: CentOS mailing list Subject: Re: [CentOS] VNC
On Fri, Oct 11, 2013 at 3:30 PM, Earl Ramirez <earlaramirez@gmail.com
wrote:
On Fri, 2013-10-11 at 15:18 -0600, Larry Martell wrote:
I'm trying to set up a VNC server using the instructions at
http://www.techrepublic.com/blog/linux-and-open-source/linux-101-easy- vnc-server-setup/
.
I am up to step 6:
Step 6: Edit iptables
In order for the VNC connections to get through, you must allow them with iptables. To do this, open up the file /etc/sysconfig/iptables and add
the
line:
-A INPUT -m state --state NEW -m tcp -p tcp -m multiport --dports 5901:5903,6001:6003 -j ACCEPT
Save the file and restart iptables with the command:
service iptables restart
When I issue the restart command I get:
iptables: Applying firewall rules: iptables-restore: line 1 failed [FAILED]
Note that I did not have an iptables file before but there is an iptables-config file.
Can someone help me complete this configuration.
Can you post the content of the file, I just edit the config file and I didn't get any errors when I issue the command
$ sudo /sbin/service iptables restart
As I wrote, there was no iptables file. I created one with just that one line:
-A INPUT -m state --state NEW -m tcp -p tcp -m multiport --dports 5901:5903,6001:6003 -j ACCEPT _______________________________________________ CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos
CentOS mailing list CentOS@centos.org http://lists.centos.org/mailman/listinfo/centos