Re: [PLUG] Advise on SNMP config on RHEL 5 needed; iptables command?

Mike Leone on 8 Apr 2011 08:39:37 -0700

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

Re: [PLUG] Advise on SNMP config on RHEL 5 needed; iptables command?

From: Mike Leone <turgon@mike-leone.com>
To: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Subject: Re: [PLUG] Advise on SNMP config on RHEL 5 needed; iptables command?
Date: Fri, 08 Apr 2011 11:39:24 -0400
Organization: Organization doesn't really apply to Mike ...
Reply-to: Philadelphia Linux User's Group Discussion List <plug@lists.phillylinux.org>
Sender: plug-bounces@lists.phillylinux.org
User-agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.15) Gecko/20110303 Thunderbird/3.1.9

On 4/7/2011 4:06 PM, Kevin McAllister wrote:
> I think you nailed it here.  
> 
> /sbin/service iptables status
> 
> Will dump your list of rules (so will iptables -L -n)
> 
> And I suspect you are blocking traffic to 161.

That appears to be it:

-----------------
[root@phaserv1:~] $ iptables -L -n
Chain INPUT (policy ACCEPT)
target     prot opt source               destination
RH-Firewall-1-INPUT  all  --  0.0.0.0/0            0.0.0.0/0

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination
RH-Firewall-1-INPUT  all  --  0.0.0.0/0            0.0.0.0/0

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

Chain RH-Firewall-1-INPUT (2 references)
target     prot opt source    destination
ACCEPT     all  --  0.0.0.0/0 0.0.0.0/0
ACCEPT     icmp --  0.0.0.0/0 0.0.0.0/0    icmp type 255
ACCEPT     esp  --  0.0.0.0/0 0.0.0.0/0
ACCEPT     ah   --  0.0.0.0/0 0.0.0.0/0
ACCEPT     udp  --  0.0.0.0/0 224.0.0.251  udp dpt:5353
ACCEPT     udp  --  0.0.0.0/0 0.0.0.0/0    udp dpt:631
ACCEPT     tcp  --  0.0.0.0/0 0.0.0.0/0    tcp dpt:631
ACCEPT     all  --  0.0.0.0/0 0.0.0.0/0    state RELATED,ESTABLISHED
ACCEPT     tcp  --  0.0.0.0/0 0.0.0.0/0    state NEW tcp dpt:21
ACCEPT     tcp  --  0.0.0.0/0 0.0.0.0/0    state NEW tcp dpt:22
ACCEPT     tcp  --  0.0.0.0/0 0.0.0.0/0    state NEW tcp dpt:443
ACCEPT     tcp  --  0.0.0.0/0 0.0.0.0/0    state NEW tcp dpt:80
ACCEPT     tcp  --  0.0.0.0/0 0.0.0.0/0    state NEW tcp dpt:2301
ACCEPT     udp  --  0.0.0.0/0 0.0.0.0/0    state NEW udp dpt:2301
REJECT     all  --  0.0.0.0/0 0.0.0.0/0    reject-with icmp-host-prohibited
---------------

I don't see anything allowing UDP 161/162. So I would need to do:

iptables -A RH-Firewall-1-INPUT -p udp s xxx.xxx.xxx.xxx -m udp --dport
161 -j ACCEPT

So it would only accept SNMP requests from the IP address xxx.xxx.xxx.xxx?
___________________________________________________________________________
Philadelphia Linux Users Group         --        http://www.phillylinux.org
Announcements - http://lists.phillylinux.org/mailman/listinfo/plug-announce
General Discussion  --   http://lists.phillylinux.org/mailman/listinfo/plug

Follow-Ups:
- Re: [PLUG] Advise on SNMP config on RHEL 5 needed; iptables command?
  - From: Robert Spangler <mlists@zoominternet.net>

References:
- [PLUG] Advise on SNMP config on RHEL 5 needed
  - From: Mike Leone <turgon@mike-leone.com>
- Re: [PLUG] Advise on SNMP config on RHEL 5 needed
  - From: Kevin McAllister <kevin@mcallister.ws>

Prev by Date: [PLUG] IT Support Specialist Opportunity
Next by Date: Re: [PLUG] Advise on SNMP config on RHEL 5 needed; iptables command?
Previous by thread: Re: [PLUG] Advise on SNMP config on RHEL 5 needed
Next by thread: Re: [PLUG] Advise on SNMP config on RHEL 5 needed; iptables command?
Index(es):
- Date
- Thread