This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Packet filter blocking internal webadmin

Hi -
     I managed to lock my internal network from accessing webadmin (5.026).  I know I had it in the " never block" setup section, but since I removed "any" from accessing it, I can't get in.  I've checked netstat -ap and it shows https listening:
[ QUOTE ]
fw:/var/log # netstat -ap | grep https
tcp        0      0 *:https                 *:*                     LISTEN      438/httpd

[/ QUOTE ]

I've checked the packetfilter.log and it shows packets being dropped from my PC (.204) to the webadmin IP (.1):

[ QUOTE ]
fw:/var/log # tail packetfilter.log
2004:11:12-12:00:01 (none) kernel: DROP: IN=eth1 OUT= MAC=00:60:08:9c[:D]b[:D]1:00:e0:81:25:6b:c3:08:00 SRC=172.16.1.204 DST=172.16.1.1 LEN=48 TOS=0x00 PREC=0x00 TTL=128 ID=37936 DF PROTO=TCP SPT=2932 DPT=443 WINDOW=65535 RES=0x00 SYN URGP=0

[/ QUOTE ]

I have SSH access and physical access to the machine.  How can I enable access to webadmin?

Thanks,
Greg

This thread was automatically locked due to age.

0 Gert Hansen over 20 years ago

Hi there,

just log in into to consol and execute:

iptables -I INPUT -j ACCEPT

change the allowed networks for WebAdmin and than execute:

iptables -D INPUT 1

thats it.

best regards
Gert
Cancel
Vote Up 0 Vote Down

Cancel
0 Greg_DePasse over 20 years ago in reply to Gert Hansen

Thanks Gert!

That worked.

Now I see what I did. I said never block the internal network from bad password guessing and then removed it from the allowed nets. Whoops! I added my internal net back in the allowed nets and I'm back in business.

Thanks,
Greg
Cancel
Vote Up 0 Vote Down

Cancel