iptables and NCPA Client on RHEL6

juana · Post by **juana** » Sun Apr 27, 2014 1:52 pm

NCPA client on RHEL6 and iptables on does not work for me. If I stop iptables service, then the '/etc/init.d/ncpa_listener restart' works. Otherwise, the Nagios master node gets UNKNOWN errors from client. Is there a special rule I need to add to allow NCPA to talk to master node while iptables is enabled?

slansing · Post by **slansing** » Mon Apr 28, 2014 10:20 am

Port 5693 by default needs to be open, what to you get when you run this from the XI server?:

Code: Select all

nmap -sU -p 5693 addr.of.remote.ncpa.box

juana · Post by **juana** » Mon Apr 28, 2014 1:16 pm

# nmap -sU -p 5693 my.hostname.ext

Starting Nmap 5.51 ( http://nmap.org ) at 2014-04-28 11:14 PDT
Nmap scan report for my.hostname.ext (xx.xx.xx.xx)
Host is up (0.00021s latency).
PORT STATE SERVICE
5693/udp filtered unknown

Nmap done: 1 IP address (1 host up) scanned in 2.08 seconds
#

slansing · Post by **slansing** » Mon Apr 28, 2014 1:30 pm

Looks like you have not provided a firewall rule for NCPA, it is still filtered. That is up to you or your sysadmins to take care of. Without that port open, or the port that you set NCPA to use, you will not be able to send or receive over it.

juana · Post by **juana** » Mon Apr 28, 2014 1:37 pm

Thanks, I ran the below and all is well:

Code: Select all

 /sbin/iptables -I INPUT -p tcp -m tcp --dport 5693 -j ACCEPT
/sbin/service iptables save

tmcdonald · Post by **tmcdonald** » Mon Apr 28, 2014 1:38 pm

If all is well for you then all is well for us. I'll be closing this thread now, but feel free to open another if you need anything in the future!

Nagios Support Forum

iptables and NCPA Client on RHEL6

iptables and NCPA Client on RHEL6

Re: iptables and NCPA Client on RHEL6

Re: iptables and NCPA Client on RHEL6

Re: iptables and NCPA Client on RHEL6

Re: iptables and NCPA Client on RHEL6

Re: iptables and NCPA Client on RHEL6