[mythtv-users] Fedora firewall problems(?)

Peter VanDerWal peter at vanderwal.us
Thu Jul 3 10:49:14 UTC 2008


> jonny Linux wrote:
>> Hi,
>>
>> I've got a new installation of Fedora 9. The problem is I can't connect
>> to
>> it for most services. For some reason ssh works, but I'm trying to use
>> it as
>> a mythtv backend, and it won't allow either a mysql connection or a
>> mythbackend connection. Also the apache web server appears to be blocked
>> (no
>> route to host when doing "telnet 192.168.1.39 80").
>>
>> I've used system-config-firewall to ensure there is no firewall running,
>> and
>> I've tried SELinux in both permissive and off modes.
>>
>> Can anybody tell me of any other settings that could be blocking these
>> ports?
>>
>
> Sometimes figuring out what's going on with this sort of error requires
> the deductive genius of Sherlock Holmes *and* Hercule Poirot, working in
> concert!
>
> 0 The most likely and usual problem: check your cables!
>
> 1 Can you get *out* to the world from the new box? (Eg. the new box is
> working...)
>
> 2 Ifconfig on the new box actually reports '192.168.1.39'
>
> 3 You are plugged into the correct NIC ( eg this is not a 2 NIC
> setupt...where the box could pass test #1 but still 'refuse' you access!)
>
> 4 The router is set up to allow access to the new installation. This can
> be a silent killer. Check the router
> a) for MAC address restrictions (not likely on a new installtion to an
> old box, but possible for a new box),
> b) for IP address restrictions ( nothing above 192.168.1.32 for
> example..sometimes tied with the DHCP range even though using a static
> address) and
> c) IP address assignments ( that IP address is reserved for another box,
> by *that box's* MAC address: both MAC addresses show up as
> allowed-access, but one is already tied to ..1.39.)
>
> 5 Can you ping from another box by IP as root and as a user?
>
> 6 Can you ping by hostname: check /etc/hosts-allow and hosts-deny on
> both boxes
>
> 7 Check that both boxes are using the correct (same) hostname and IP
> address in /etc/hosts.
>
> 8 I'm out of ideas....
>

Run:
# netstat -tuna
and make sure the services are actually listening for connections



More information about the mythtv-users mailing list