[OpenAFS] ports used by OpenAFS?
Todd M. Lewis
utoddl@email.unc.edu
Tue, 22 Mar 2005 08:32:41 -0500
dom.toretto@pandora.be wrote:
> Hello everybody,
>
> I'm setting up an OpenAFS-cell, now I want to configure my firewall
> but don't know wich ports are used by OpenAFS. Can someone help me?
You didn't indicate what type of firewall you are configuring. However, here
are the relevant lines from my /etc/sysconfig/iptables file on a RedHat 9 AFS
client-only system. Perhaps this will at least give you some hints:
:KERBEROS-INPUT - [0:0]
:AFS-INPUT - [0:0]
-A INPUT -j KERBEROS-INPUT
-A INPUT -j AFS-INPUT
-A AFS-INPUT -p udp -m udp --dport 7001 --sport 7000 -j ACCEPT
-A AFS-INPUT -p udp -m state --state ESTABLISHED \
-m udp --sport 7002:7009 --dport 1025: -j ACCEPT
-A KERBEROS-INPUT -p udp -m state --state ESTABLISHED \
-m udp --sport kerberos --dport 1025: -j ACCEPT
-A KERBEROS-INPUT -p udp -m state --state ESTABLISHED \
-m udp --sport kerberos4 --dport 1025: -j ACCEPT
-A KERBEROS-INPUT -p udp -m state --state ESTABLISHED \
-m udp --sport krb524 --dport 1025: -j ACCEPT
> And is it possible to specify the processes that use these ports?
Not that I'm aware of, but that would depend on your firewall.
> Thanx!
>
> Greetz Loretto
--
+--------------------------------------------------------------+
/ Todd_Lewis@unc.edu 919-962-5273 http://www.unc.edu/~utoddl /
+--------------------------------------------------------------+