KB Article #178256

Appliance firewall rule not persistent after reboot

Problem

Rebooting of appliance doesn’t apply firewall configuration on start-up and it turns out that the settings for the firewall are non persistent by default on SuSE ES11 so they aren't ever going to survive a reboot.

Resolution

Webmin only uses IPtables which is overwritten by the SuSEfirewall2 service. SuSEfirewall2 configuration can be accessed in YAST as well or edit the SuSEfirewall2 configuration files to allow specific port.

Solution 1 :-

1) vi /etc/sysconfig/SuSEfirewall2.

2) Added a port in this file.

Eg. -

FW_SERVICES_ACCEPT_EXT="0/0,tcp,6677

0/0,tcp,8787

0/0,tcp,5566"

3) Restarted the SuSEfirewall2 service.

==> SuSEfirewall2 stop

==> SuSEfirewall2 start

or

Reboot the appliance.

Solution 2)

Use YaST tool to open port ranges with Suse Linux ( Refer attached document for steps)

Note:- This file by default have port defined that are used by API Gateway on Appliance.

For information on how to configure the SuSEfirewall2 here is the SuSE config page.

https://www.suse.com/documentation/sled11/book_sec...

https://en.opensuse.org/SuSEfirewall2

Still need help?

If this information wasn't helpful to you, just drop us a line. We'll get back to you as soon as possible.