|
Ursine Asylum posted:Bastard, I capped at 168.  
|
#
¿
Sep 27, 2013 22:01
|
|
|
|
| # ¿ May 2, 2024 12:20 |
|
|
Is anyone familiar with AWS here? I'm pulling my hair trying to bring up a simple mumble VoiP server, but I cannot get any clients to connect. The service is listening on the default port, and I have the port open in iptables as well as in the EC2 security group assigned to the instance. I even tried scanning it with nmap and it is saying the port is filtered. 22 is open for SSH, and I was able to open ICMP via the security group as well and it is replying back to pings just fine. Am I missing something obvious here? EDIT: I even installed lynx and and went to canyouseem.org and it confirms it cannot see through the port. The Third Man fucked around with this message at 18:14 on Oct 30, 2013 |
|
#
¿
Oct 30, 2013 17:45
|
|
|
quote=!edit
|
|
#
¿
Oct 30, 2013 18:13
|
|
|
EDIT: loving phone, jesus...
|
|
#
¿
Oct 30, 2013 18:13
|
|
|
evol262 posted:Can you telnet to whatever port Mumble runs from the host itself? What's your security group rule? 64738 TCP/UDP? I cannot telnet to 64738, and yes, the rules in the security group are custom TCP/UDP rules 0.0.0.0/0 to 64738. I verified with netstat that murmurd is listening on 64738 as well. I also just created a fresh RHEL instance, with a new security group using identical settings, and canyouseeme.org still cannot see 64738, with the reason ":No route to host". It does see SSH running on 22 though...
|
|
#
¿
Oct 30, 2013 18:34
|
|
|
evol262 posted:
I can telnet to localhost 64738 from the EC2 console. I even tried adding rules to the group to allow ALL TCP/ALL UDP and it still did not work. I can't help but feel I'm missing something incredibly obvious here...I've done this before and never had any trouble opening up ports.
|
|
#
¿
Oct 30, 2013 19:38
|
|
|
evol262 posted:netstat -anp Here's the output, but I'm not familiar enough with netstat to really know what I'm looking for: http://pastebin.com/raw.php?i=wstPRWCV EDIT: The only local address that are listening on 64738 are represented as ": : : 64738", does that mean it's only listening for IPv6 connections? The Third Man fucked around with this message at 20:15 on Oct 30, 2013 |
|
#
¿
Oct 30, 2013 20:12
|
|
|
SolTerrasa posted:Are you sure you actually set those rules, though? I used to work for that team at Amazon, I've seen a billion people add security rules through the console then not click the completely-offscreen-even-on-a-1080p-monitor "apply" button which is hidden by a nigh-invisible scrollbar in that shithole of a web UI. I have applied the rules, yes.
|
|
#
¿
Oct 30, 2013 20:23
|
|
|
evol262 posted:iptables -L ? http://pastebin.com/raw.php?i=EurupkMV Rules are in there twice for some reason, I must have added them again earlier when I was trying to figure out why things weren't working. Negromancer posted:^^^ I believe that is correct. I would just disabled ipv6, it usually just messes everything up. This is an ec2 instance, and stopping iptables did not help. EDIT: what the christ stopping iptables again for shits and now it's working  I don't know what the gently caress, but thanks for helping my troubleshoot this, I feel like I learned a lot but I'm still somehow an idiot... I had those rules in the iptables input chain this whole time, is there something in there that was loving this all up? Are iptables chains read from top to bottom like an acl? If so, why the hell wouldn't new rules be added to the top of the chain? The Third Man fucked around with this message at 20:52 on Oct 30, 2013 |
|
#
¿
Oct 30, 2013 20:44
|
|
|
|
| # ¿ May 2, 2024 12:20 |
|
|
evol262 posted:"iptables -I" inserts in the beginning. "iptables -A" appends to the end. You get the option. And you can insert at an arbitrary line if you really need to (you probably don't). "service iptables save" will dump rules in /etc/sysconfig/iptables (and somewhere in /etc on debian) which does nothing but write rules to a file. iptables-restore executes them. You can check iptables-save and iptables-restore (which should be plain-jane scripts, but depends on your distro) to see where it sticks them, then edit that file willy-nilly if you don't want to muck with adding rules one by one... This is what I get for mindlessly copy-pasting commands from the install guide  I'll chock it up as a learning experience... Thanks again for your help.
|
|
#
¿
Oct 30, 2013 21:27
|
|