Is IP filter even running?
svcs -l ipfilter
In your email, you state that you have moved. Did you re-ip? Are you
using network port other than the bge0 interface from your email below?
There really isn't enough detail about how the current server is
configured to determine the actual source of the problem, but I can tell
you from you ipfstat command below, that if ipfilter is running, it
isn't doing anything.
Jerry
Rene Bakkum wrote:
Hi guys,
A couple of weeks ago I took over a few solaris10 machine which has been
running on a T-1000 SUN servers. It has been in control by someone who
is no longer available to do this kind of stuff. So I can't verify
anything with the orginal admin, and well log-books and any information
he has given me is like the IP address and the root-password. So not
much to build on.
My Solaris knowledge is very limited, I have more experience with Linux,
so I can get around but it just takes a little time to find what I need.
So bare with me if I can't always give you the right information in one go.
So a few days ago we moved the server to our DC, and everything seems to
be running again. However I noticed that the server is accessable
through SSH from multiple locations, while in my believe there was a
local IPF firewall running which blocked it. But since I am now not
entirely sure it could be that it has been wide open since the start of
the server.
Now I searched for clues and logs, and since I think everything should
running fine, but the firewall just isn't started.
If I look in the stats, nothing is blocked or accepted:
# ipfstat
bad packets: in 0 out 0
IPv6 packets: in 0 out 0
input packets: blocked 0 passed 0 nomatch 0 counted 0 short 0
output packets: blocked 0 passed 0 nomatch 0 counted 0 short 0
The configuration of IPF looks like:
# cat /etc/ipf/ipf.conf
pass in quick on lo0 all
pass out quick on lo0 all
block in on bge0 all
pass out quick on bge0 all keep state
pass in quick on bge0 proto tcp/udp from [my local IP] to any
pass in on bge0 proto tcp from any to any port = 80 keep state
pass in quick on bge0 proto tcp from any to any port = 1935 keep state
I have 2 servers which are basically the same configuration, on the
other server - the firewall is running.
So what can I check and where can I start to look for the firewall, if
its running and loading the right configuration?
Thanks for your assistance in advanced.
- Rene
_______________________________________________
Solaris-Users mailing list
[email protected]
http://www.filibeto.org/mailman/listinfo/solaris-users
_______________________________________________
Solaris-Users mailing list
[email protected]
http://www.filibeto.org/mailman/listinfo/solaris-users
