I'm not an expert at iptables I can only recommend to read `man iptables` and google :)
On Wed, 25 Aug 2021 at 19:34, Lee But <leesenglishless...@gmail.com> wrote: > I still haven't been able to work out what's wrong. > Everytime I add the iptables -A INPUT -j DROP rule, OpenMeetings cannot > be reached by the browser and times out, and restarting the servers in my > original message still produces the same error. > > On Tue, Aug 24, 2021 at 2:53 PM Lee But <leesenglishless...@gmail.com> > wrote: > >> Hello, >> I've applied the various iptables rules as per the installation guide and >> VPS securing (see attached iptables.txt file), while docker has added many >> 'chains' I don't understand. iptables is new to me. >> >> Everything works until I apply the rule iptables -A INPUT -j DROP >> After that, tomcat/catalina does not start. I have these commands in a >> bash script: >> sudo /etc/init.d/mysql restart >> sudo /etc/init.d/coturn restart >> sudo /etc/init.d/docker restart >> sudo docker restart kms >> sudo /etc/init.d/tomcat34 restart >> >> This is what I see this in the terminal: >> >> NOTE: Picked up JDK_JAVA_OPTIONS: >> --add-opens=java.base/java.lang=ALL-UNNAMED --add-opens=java.base/ >> java.io=ALL-UNNAMED --add-opens=java.base/java.util=ALL-UNNAMED >> --add-opens=java.base/java.util.concurrent=ALL-UNNAMED >> --add-opens=java.rmi/sun.rmi.transport=ALL-UNNAMED >> Aug 24, 2021 10:23:35 PM org.apache.catalina.startup.Catalina stopServer >> SEVERE: Could not contact [localhost:8005] (base port [8005] and offset >> [0]). Tomcat may not be running. >> Aug 24, 2021 10:23:35 PM org.apache.catalina.startup.Catalina stopServer >> SEVERE: Error stopping Catalina >> java.net.ConnectException: Connection timed out (Connection timed out) >> at java.base/java.net.PlainSocketImpl.socketConnect(Native Method) >> at >> java.base/java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:399) >> at >> java.base/java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:242) >> at >> java.base/java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:224) >> at java.base/java.net.SocksSocketImpl.connect(SocksSocketImpl.java:392) >> at java.base/java.net.Socket.connect(Socket.java:609) >> at java.base/java.net.Socket.connect(Socket.java:558) >> at java.base/java.net.Socket.<init>(Socket.java:454) >> at java.base/java.net.Socket.<init>(Socket.java:231) >> at org.apache.catalina.startup.Catalina.stopServer(Catalina.java:667) >> at java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke0(Native >> Method) >> at >> java.base/jdk.internal.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62) >> at >> java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) >> at java.base/java.lang.reflect.Method.invoke(Method.java:566) >> at org.apache.catalina.startup.Bootstrap.stopServer(Bootstrap.java:391) >> at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:481) >> >> I have attached the iptables configuration in a text file. >> Do I need to open port 8005 as well? >> Thank you all, >> Lee >> > -- Best regards, Maxim
