Firewall Settings

From OpenSimulator

(Difference between revisions)
Jump to: navigation, search
(Linux: added openSuSE firewall)
Line 1: Line 1:
 +
{{Template:Quicklinks}}
 +
 
This page will discuss about the firewall settings for each operation systems or distributions.
 
This page will discuss about the firewall settings for each operation systems or distributions.
 +
  
 
=Widows=
 
=Widows=
Line 34: Line 37:
 
==Ipconfig==
 
==Ipconfig==
  
 
+
If you run 'iptables -L' as root user, and you'll find some rules as a result, then this type of firewall is running on your system. To modify to enable remote access:
 +
<pre>
 +
iptables -A INPUT -p tcp --dport 9000 -j ACCEPT
 +
iptables -A INPUT -p udp --dport 9000 -j ACCEPT
 +
</pre>
 +
or if your firewall uses chains (like CentOS):
 +
<pre>
 +
iptables -I RH-Firewall-1-INPUT -p tcp --dport 9000 -j ACCEPT
 +
iptables -I RH-Firewall-1-INPUT -p udp --dport 9000 -j ACCEPT
 +
</pre>
 +
and run these commands to reflect the change:
 +
<pre>
 +
iptables-save
 +
iptables-save > /etc/sysconfig/iptables
 +
service iptables restart
 +
</pre>
  
 
==SuSE Firewall2==
 
==SuSE Firewall2==
Line 55: Line 73:
 
sudo /sbin/SuSEfirewall2
 
sudo /sbin/SuSEfirewall2
 
</pre>
 
</pre>
 
You can now access your OpenSimulator from outside.
 

Revision as of 07:17, 13 May 2011

This page will discuss about the firewall settings for each operation systems or distributions.


Contents

Widows

Windows Firewall

On Server 2008, Vista or Windows 7, you'll need to configure the "Windows Firewall with Advanced Security" to enable access from the viewers on another machines. Here's what you can do:

  1. Click Start and then click Control Panel. In the Control Panel, click System and Security and then click Administrative Tools. In Administrative Tools, double-click Windows Firewall with Advanced Security. Or you can even direct access by typing "WF.msc" in the Run textbox in the start menu.
  2. Select Inbound Rules in the left pane and click New Rule under Inbound Rules in the Actions Pane. The New Inbound Rule Wizard will launch.
  3. First on Rule Type screen, select Port. Click Next to continue.
  4. On Protocol and Ports screen, select TCP, then select Specific local ports: and fill in the value 9000 (if standalone mode; If grid mode, it will be 8002). Click Next to continue.
  5. On Action screen, select Allow the connection. Click Next to continue.
  6. On Profile screen, leave it as is and click Next to continue.
  7. On Name screen, give the rule a name and any description. Click Finish to create the rule.
  8. Repeat 2-7 step above to create the same rule for UDP as well.


McAfee Security

McAfee Security does not allow applications to listen on ports not explicitly specified. You have two options: 1) disable firewall protection all together, 2) enable OpenSim.exe to be able to open ports.

Disable Firewall - Open McAfee SecurityCenter. Select "Internet & Network". In the lower left corner is a small link to "Configure...". Select this. In the right side of the window, select the bar that says "Firewall protection is enabled". Here you can select "Off".

Enable OpenSim.exe to Open Ports - Open McAfee SecurityCenter. Select "Internet & Network". In the lower left corner is a small link to "Configure...". Select this. In the right side of the window, select the bar that says "Firewall protection is enabled". Select the "Advanced..." button. This will pop up a new window.

In the new window, on the left side, select "Program Permissions." In the middle on the right side of the window, select the "Add Allowed Program" button. Use the browser that pops up to find the OpenSim executable and select it.

Finally, select "OK" and exit the McAfee SecurityCenter window.


Linux

Ipconfig

If you run 'iptables -L' as root user, and you'll find some rules as a result, then this type of firewall is running on your system. To modify to enable remote access:

iptables -A INPUT -p tcp --dport 9000 -j ACCEPT
iptables -A INPUT -p udp --dport 9000 -j ACCEPT

or if your firewall uses chains (like CentOS):

iptables -I RH-Firewall-1-INPUT -p tcp --dport 9000 -j ACCEPT
iptables -I RH-Firewall-1-INPUT -p udp --dport 9000 -j ACCEPT

and run these commands to reflect the change:

iptables-save
iptables-save > /etc/sysconfig/iptables
service iptables restart

SuSE Firewall2

If you have newly installed openSuSE, you'll find this kind of firewall is active by default. To let external viewers access OpenSimulator, edit the configuration file:

sudo vi /etc/sysconfig/SuSEfirewall2

Inside this file, you'll find the two lines including "FW_SERVICES_EXT_TCP" and "FW_SERVICES_EXT_UDP". Change them so that they look like:

FW_SERVICES_EXT_UDP="9000" # for standalone / use "8002" if grid mode
...
FW_SERVICES_EXT_TCP="9000" # same as above

and save it.

Finally, run reload command:

sudo /sbin/SuSEfirewall2
Personal tools
General
About This Wiki