[CentOS] LDAP/iptables

Mon Sep 5 23:31:02 UTC 2005
Thomas E Dukes <edukes at alltel.net>

 

> -----Original Message-----
> From: centos-bounces at centos.org 
> [mailto:centos-bounces at centos.org] On Behalf Of Johnny Hughes
> Sent: Monday, September 05, 2005 6:35 PM
> To: CentOS ML
> Subject: RE: [CentOS] LDAP/iptables
> 
> On Mon, 2005-09-05 at 18:07 -0400, Thomas E Dukes wrote:
> >  
> > > -----Original Message-----
> > > From: centos-bounces at centos.org
> > > [mailto:centos-bounces at centos.org] On Behalf Of Craig White
> > > Sent: Monday, September 05, 2005 5:51 PM
> > > To: CentOS mailing list
> > > Subject: RE: [CentOS] LDAP/iptables
> > > 
> > > On Mon, 2005-09-05 at 16:49 -0400, Thomas E Dukes wrote:
> > > >  
> > > 
> > > > > ----
> > > > > and how are you starting ldap ?
> > > > > 
> > > > > service ldap start?
> > > > > 
> > > > 
> > > > Hello Craig,
> > > > 
> > > > Its started by the init scripts on boot.  See something?
> > > > 
> > > ----
> > > # ps aux|grep ldap
> > > ldap      2578  0.0  0.9 272148 10164 ?      Ssl  Aug13
> > > 0:00 /usr/sbin/slapd -u ldap -h ldap:///
> > > 
> > > does it look something like this?
> > > 
> > > try
> > > 
> > > # service ldap restart
> > > 
> > > and see if it stops and starts
> > 
> > Hi Craig,
> > 
> > ldap is running.  I seem not to be able to connect on port 389.  I 
> > can't telnet there either.
> 
> I had told you to run:
> 
> netstat -aptn
> 
> (run this on the machine that is run the ldap service)
> 
> If you don't have something that looks like this under "local 
> address":
> 
> x.x.x.x:389
> 
> then you are not listening for ldap connections on that machine

Hello Johnny,

Here's the output for netstat -aptn:

Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address               Foreign Address
State       PID/Program name   
tcp        0      0 0.0.0.0:20000               0.0.0.0:*
LISTEN      2699/perl           
tcp        0      0 0.0.0.0:1                   0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:20034               0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:32771               0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:32772               0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:40421               0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:32773               0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:901                 0.0.0.0:*
LISTEN      1988/xinetd         
tcp        0      0 0.0.0.0:32774               0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:199                 0.0.0.0:*
LISTEN      1943/snmpd          
tcp        0      0 0.0.0.0:31337               0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:3306                0.0.0.0:*
LISTEN      2239/mysqld         
tcp        0      0 0.0.0.0:6667                0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:11                  0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:139                 0.0.0.0:*
LISTEN      2421/smbd           
tcp        0      0 0.0.0.0:5742                0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 127.0.0.1:3310              0.0.0.0:*
LISTEN      2021/clamd          
tcp        0      0 0.0.0.0:110                 0.0.0.0:*
LISTEN      1988/xinetd         
tcp        0      0 0.0.0.0:143                 0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:15                  0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 127.0.0.1:783               0.0.0.0:*
LISTEN      2316/spamd -d -c -m 
tcp        0      0 0.0.0.0:10000               0.0.0.0:*
LISTEN      2715/perl           
tcp        0      0 0.0.0.0:54320               0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:2000                0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:27665               0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:1524                0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:21                  0.0.0.0:*
LISTEN      2012/vsftpd         
tcp        0      0 151.213.91.157:53           0.0.0.0:*
LISTEN      1963/named          
tcp        0      0 10.10.0.1:53                0.0.0.0:*
LISTEN      1963/named          
tcp        0      0 127.0.0.1:53                0.0.0.0:*
LISTEN      1963/named          
tcp        0      0 127.0.0.1:631               0.0.0.0:*
LISTEN      2356/cupsd          
tcp        0      0 0.0.0.0:23                  0.0.0.0:*
LISTEN      1988/xinetd         
tcp        0      0 127.0.0.1:5335              0.0.0.0:*
LISTEN      1865/mDNSResponder  
tcp        0      0 0.0.0.0:1080                0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:12345               0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:25                  0.0.0.0:*
LISTEN      2275/sendmail: acce 
tcp        0      0 127.0.0.1:953               0.0.0.0:*
LISTEN      1963/named          
tcp        0      0 0.0.0.0:12346               0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:635                 0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:49724               0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:540                 0.0.0.0:*
LISTEN      2570/portsentry     
tcp        0      0 0.0.0.0:445                 0.0.0.0:*
LISTEN      2421/smbd           
tcp        0      0 127.0.0.1:3306              127.0.0.1:32780
ESTABLISHED 2239/mysqld         
tcp        0      0 127.0.0.1:3306              127.0.0.1:32781
ESTABLISHED 2239/mysqld         
tcp        0      0 127.0.0.1:3306              127.0.0.1:32777
ESTABLISHED 2239/mysqld         
tcp        0      0 127.0.0.1:3306              127.0.0.1:32778
ESTABLISHED 2239/mysqld         
tcp        0      0 127.0.0.1:3306              127.0.0.1:32779
ESTABLISHED 2239/mysqld         
tcp        0      0 10.10.0.1:445               10.10.0.3:4257
ESTABLISHED 6402/smbd           
tcp        0      0 :::9090                     :::*
LISTEN      2653/java           
tcp        0      0 :::9091                     :::*
LISTEN      2653/java           
tcp        0      0 :::5222                     :::*
LISTEN      2653/java           
tcp        0      0 :::5223                     :::*
LISTEN      2653/java           
tcp        0      0 :::80                       :::*
LISTEN      2335/httpd          
tcp        0      0 :::5269                     :::*
LISTEN      2653/java           
tcp        0      0 :::22                       :::*
LISTEN      1975/sshd           
tcp        0      0 ::ffff:151.213.91.157:80    ::ffff:155.41.240.117:42062
TIME_WAIT   -                   
tcp        0      0 ::ffff:151.213.91.157:80    ::ffff:209.200.31.105:55453
TIME_WAIT   -                   
tcp        0      0 ::ffff:10.10.0.1:80         ::ffff:10.10.0.1:33000
TIME_WAIT   -                   
tcp        0      0 ::ffff:127.0.0.1:32780      ::ffff:127.0.0.1:3306
ESTABLISHED 2653/java           
tcp        0      0 ::ffff:127.0.0.1:32781      ::ffff:127.0.0.1:3306
ESTABLISHED 2653/java           
tcp        0      0 ::ffff:127.0.0.1:32778      ::ffff:127.0.0.1:3306
ESTABLISHED 2653/java           
tcp        0      0 ::ffff:127.0.0.1:32779      ::ffff:127.0.0.1:3306
ESTABLISHED 2653/java           
tcp        0      0 ::ffff:127.0.0.1:32777      ::ffff:127.0.0.1:3306
ESTABLISHED 2653/java           
tcp        0      0 ::ffff:151.213.91.157:80    ::ffff:65.54.188.21:12639
TIME_WAIT   -                   

I don't see port 389.  Any ideas?

Thanks!!!
> 
> 
>