Firewall Settings

This page will discuss firewall settings for each operating system or distribution. For more information on what addresses and ports need to be available externally, please see Network Settings.

= Windows =

Windows Firewall
On Server 2008, Vista or Windows 7, you'll need to configure the "Windows Firewall with Advanced Security" to enable access from the viewers on another machines. Here's what you can do:


 * 1) Click Start and then click Control Panel. In the Control Panel, click System and Security and then click Administrative Tools. In Administrative Tools, double-click Windows Firewall with Advanced Security. Or you can even direct access by typing "WF.msc" in the Run textbox in the start menu.
 * 2) Select Inbound Rules in the left pane and click New Rule under Inbound Rules in the Actions Pane. The New Inbound Rule Wizard will launch.
 * 3) First on Rule Type screen, select Port. Click Next to continue.
 * 4) On Protocol and Ports screen, select TCP, then select Specific local ports: and fill in the value 9000 (if standalone mode; If grid mode, it will be 8002). Click Next to continue.
 * 5) On Action screen, select Allow the connection. Click Next to continue.
 * 6) On Profile screen, leave it as is and click Next to continue.
 * 7) On Name screen, give the rule a name and any description. Click Finish to create the rule.
 * 8) Repeat 2-7 step above to create the same rule for UDP as well.

McAfee Security
McAfee Security does not allow applications to listen on ports not explicitly specified. You have two options: 1) disable firewall protection all together, 2) enable OpenSim.exe to be able to open ports.

Disable Firewall - Open McAfee SecurityCenter. Select "Internet &amp; Network". In the lower left corner is a small link to "Configure...". Select this. In the right side of the window, select the bar that says "Firewall protection is enabled". Here you can select "Off".

Enable OpenSim.exe to Open Ports - Open McAfee SecurityCenter. Select "Internet &amp; Network". In the lower left corner is a small link to "Configure...". Select this. In the right side of the window, select the bar that says "Firewall protection is enabled". Select the "Advanced..." button. This will pop up a new window.

In the new window, on the left side, select "Program Permissions." In the middle on the right side of the window, select the "Add Allowed Program" button. Use the browser that pops up to find the OpenSimulator executable and select it.

Finally, select "OK" and exit the McAfee SecurityCenter window.

= Linux =

Ipconfig
If you run 'iptables -L' as root user, and you'll find some rules as a result, then this type of firewall is running on your system. To modify to enable remote access: iptables -A INPUT -p tcp --dport 9000 -j ACCEPT iptables -A INPUT -p udp --dport 9000 -j ACCEPT or if your firewall uses chains (like CentOS): iptables -I RH-Firewall-1-INPUT -p tcp --dport 9000 -j ACCEPT iptables -I RH-Firewall-1-INPUT -p udp --dport 9000 -j ACCEPT and run these commands to reflect the change: iptables-save iptables-save > /etc/sysconfig/iptables service iptables restart

SuSE Firewall2
If you have newly installed openSuSE, you'll find this kind of firewall is active by default. To let external viewers access OpenSimulator, edit the configuration file: sudo vi /etc/sysconfig/SuSEfirewall2

Inside this file, you'll find the two lines including "FW_SERVICES_EXT_TCP" and "FW_SERVICES_EXT_UDP". Change them so that they look like: FW_SERVICES_EXT_UDP="9000" # for standalone / use "8002" if grid mode ... FW_SERVICES_EXT_TCP="9000" # same as above and save it.

Finally, run reload command: sudo /sbin/SuSEfirewall2