Page 1 of 1
iptables and NCPA Client on RHEL6
Posted: Sun Apr 27, 2014 1:52 pm
by juana
NCPA client on RHEL6 and iptables on does not work for me. If I stop iptables service, then the '/etc/init.d/ncpa_listener restart' works. Otherwise, the Nagios master node gets UNKNOWN errors from client. Is there a special rule I need to add to allow NCPA to talk to master node while iptables is enabled?
Re: iptables and NCPA Client on RHEL6
Posted: Mon Apr 28, 2014 10:20 am
by slansing
Port 5693 by default needs to be open, what to you get when you run this from the XI server?:
Code: Select all
nmap -sU -p 5693 addr.of.remote.ncpa.box
Re: iptables and NCPA Client on RHEL6
Posted: Mon Apr 28, 2014 1:16 pm
by juana
# nmap -sU -p 5693 my.hostname.ext
Starting Nmap 5.51 (
http://nmap.org ) at 2014-04-28 11:14 PDT
Nmap scan report for my.hostname.ext (xx.xx.xx.xx)
Host is up (0.00021s latency).
PORT STATE SERVICE
5693/udp filtered unknown
Nmap done: 1 IP address (1 host up) scanned in 2.08 seconds
#
Re: iptables and NCPA Client on RHEL6
Posted: Mon Apr 28, 2014 1:30 pm
by slansing
Looks like you have not provided a firewall rule for NCPA, it is still filtered. That is up to you or your sysadmins to take care of. Without that port open, or the port that you set NCPA to use, you will not be able to send or receive over it.
Re: iptables and NCPA Client on RHEL6
Posted: Mon Apr 28, 2014 1:37 pm
by juana
Thanks, I ran the below and all is well:
Code: Select all
/sbin/iptables -I INPUT -p tcp -m tcp --dport 5693 -j ACCEPT
/sbin/service iptables save
Re: iptables and NCPA Client on RHEL6
Posted: Mon Apr 28, 2014 1:38 pm
by tmcdonald
If all is well for you then all is well for us. I'll be closing this thread now, but feel free to open another if you need anything in the future!