View Full Version : [ubuntu] Couple firewall related questions (Ssh, jabber, mounting)
kartal
October 25th, 2009, 02:00 PM
Hi
Yesterday I have installed Firestarter. it is a nice an easy application to use. However after installing FS Sshfs mounting, jabber client(kopete), samba mounting etc all stopped working. I believe I have enabled all the protocols for inbound and outbound traffic for lan ips ,like
5222 for jabber
139 for samba
22 for Sshfs
For some reason opening these ports wont help me at all. Is there anything else I need to do to enable these services back ? Disabling the firewall gives me all those services back in place, so I am %100 sure that it is the FS causing the malfunction or non functioning.
thanks
sasho_zl
October 25th, 2009, 02:28 PM
Try configuring the Netfilter with GUFW.
lovinglinux
October 25th, 2009, 03:35 PM
Get rid of Firestarter and install gufw (apt:gufw).
Lars Noodén
October 25th, 2009, 03:41 PM
You can watch the connections with netstat or tcpdump:
# show all tcp connections, continuously
netstat -nt -c
# show all traffic on eth0
sudo tcpdump -i
# assuming ip# xx.yy.zz.aa:
# show all incoming traffic on eth0
tcpdump -i eth0 ip dst xx.yy.zz.aa
# show all outgoing traffic on eth0
tcpdump -i eth0 ip src xx.yy.zz.aa
lovinglinux
October 25th, 2009, 03:44 PM
You can watch the connections with netstat or tcpdump:
# show all tcp connections, continuously
netstat -nt -c
# show all traffic on eth0
sudo tcpdump -i
# assuming ip# xx.yy.zz.aa:
# show all incoming traffic on eth0
tcpdump -i eth0 ip dst xx.yy.zz.aa
# show all outgoing traffic on eth0
tcpdump -i eth0 ip src xx.yy.zz.aa
I use iptstate (apt:iptstate)
kartal
October 25th, 2009, 04:26 PM
Hi
Thank you for the suggestions. I am going to try all now.
kartal
October 26th, 2009, 11:29 PM
Hi
After uninstalling Firestarter and installing Gufw, Kopete stopped connecting even if there is no firewall gui running. So I ended up installing Firestarter again, I suppose Gufw is not enabling or disabling whatever FS had changed during its initial running. So I am stuck with FS and I need to manually start FS and disable firewall to connect jabber. I know does not make sense but this is the only solution I could come up with. Any suggestions to totally get rid of FS?
thanks
lovinglinux
October 27th, 2009, 03:29 AM
Hi
After uninstalling Firestarter and installing Gufw, Kopete stopped connecting even if there is no firewall gui running. So I ended up installing Firestarter again, I suppose Gufw is not enabling or disabling whatever FS had changed during its initial running. So I am stuck with FS and I need to manually start FS and disable firewall to connect jabber. I know does not make sense but this is the only solution I could come up with. Any suggestions to improve or gotally scraping FS and its settings?
thanks
I guess you need to purge Firestarter, instead of just removing it:
sudo apt-get purge Firestarter
Also, try to cleaning the iptables before starting gufw, to make sure there are no Firestarter left-overs:
sudo iptables -F
sudo iptables -X
sudo iptables -P INPUT ACCEPT
sudo iptables -P OUTPUT ACCEPT
sudo iptables -P FORWARD ACCEPT
kartal
October 28th, 2009, 09:53 PM
thanks, I think that resolved my problem here.
vBulletin® v3.8.4, Copyright ©2000-2012, Jelsoft Enterprises Ltd.