Share

Question

Hi

I have tried to follow this guide here (How To Set Up a Firewall Using IPTables on Ubuntu 14.04) and have done everything this tutorial said. But still when I scan my server with nmap <myserverip> i still only get port 22 and port 80 as open. I need to open port 50010 for a service I am trying to create, but I see no way for me to open this port.

sudo iptables -L:
Chain INPUT (policy ACCEPT)
target prot opt source destination

ACCEPT all – anywhere anywhere

ACCEPT all – anywhere anywhere ctstate RELATED,ESTABLISHED
ACCEPT tcp – anywhere anywhere tcp dpt:ssh
ACCEPT tcp – anywhere anywhere tcp dpt:http
ACCEPT tcp – anywhere anywhere tcp dpt:50010

Chain FORWARD (policy ACCEPT)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Answers will be greately appreciated!

Answer 1

vvassi1 February 21, 2017

So for those of you still having a problem, the answer is simple. Apache needs a rule to allow traffic through the port. First find your port lsof -i :5000 (5000 is the port in question).

This will give you
COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME app 2850 root 3u IPv4 22462 0t0 TCP *:5000 (LISTEN)

As you can see we are listening to 5000 with TCP connection. Now just add the rule to apache:
sudo ufw allow 5000/tcp. This will tell the firewall (ufw) to let traffic through. Now you should be okay to use the http://<yourport>:5000/path/to/service. Good Luck.

Reply Report

ruberandinda December 13, 2017

Good answer for me thanks a lot
Reply Report

Answer 2

ruberandinda December 13, 2017

Good answer for me thanks a lot
Reply Report

Answer 3

kamaln7 October 4, 2014

The port won’t be considered “open” until something is listening on it. Your firewall config looks right so just install the service and run it and you should be good to go. You might have to configure it to listen on 0.0.0.0 instead of 127.0.0.1 or localhost, but that depends on the service’s defaults.

Reply Report

tridnguyen November 7, 2014

@kamaln7 if I have node listening on a port (say 15301), and nginx proxy to that port from 8001. If I go to http://my-ip-address/8001, it is not available. Is this the supposed behavior?
Reply Report
kamaln7 November 8, 2014

Connecting to a custom port (i.e. not 80) is done by appending :port to the hostname – so you will need to browse to http://your-ip-address:8001 instead.
Reply Report
tylerjgarland May 1, 2015

This is exactly what I needed! Thanks!
Reply Report

Answer 4

tridnguyen November 7, 2014

@kamaln7 if I have node listening on a port (say 15301), and nginx proxy to that port from 8001. If I go to http://my-ip-address/8001, it is not available. Is this the supposed behavior?
Reply Report
kamaln7 November 8, 2014

Connecting to a custom port (i.e. not 80) is done by appending :port to the hostname – so you will need to browse to http://your-ip-address:8001 instead.
Reply Report
tylerjgarland May 1, 2015

This is exactly what I needed! Thanks!
Reply Report

Answer 5

Woet October 3, 2014

Ports are open by default.

Reply Report

damp October 3, 2014

Then why isn’t it open when I scan with nmap?
Reply Report
Woet October 3, 2014

Because by default, nmap only scans the most common 1,000 ports.
Reply Report
damp October 4, 2014

And then why cant my app talk to the server. (Connection just times out/cannot reach server)
Reply Report
Woet October 4, 2014

I don’t know, the only thing I can say is that ports are open by default.
Reply Report

Answer 6

damp October 3, 2014

Then why isn’t it open when I scan with nmap?
Reply Report
Woet October 3, 2014

Because by default, nmap only scans the most common 1,000 ports.
Reply Report
damp October 4, 2014

And then why cant my app talk to the server. (Connection just times out/cannot reach server)
Reply Report
Woet October 4, 2014

I don’t know, the only thing I can say is that ports are open by default.
Reply Report

Question

Opening ports on my server

Leave a comment

Looking for something else?

Share

Share your Question

Question

Opening ports on my server

Leave a comment

Looking for something else?

Almost there!