Firewall Settings

From OpenSimulator

(Difference between revisions)
Jump to: navigation, search
m (Removed 'Template:' prefix from template includings and/or changed external-link into internal-link)
m (Robot: Cosmetic changes)
Line 4: Line 4:
  
  
=Widows=
+
= Widows =
  
==Windows Firewall==
+
== Windows Firewall ==
  
 
On Server 2008, Vista or Windows 7, you'll need to configure the "Windows Firewall with Advanced Security" to enable access from the viewers on another machines. Here's what you can do:
 
On Server 2008, Vista or Windows 7, you'll need to configure the "Windows Firewall with Advanced Security" to enable access from the viewers on another machines. Here's what you can do:
  
#Click Start and then click Control Panel. In the Control Panel, click System and Security and then click Administrative Tools. In Administrative Tools, double-click Windows Firewall with Advanced Security. Or you can even direct access by typing "WF.msc" in the Run textbox in the start menu.
+
# Click Start and then click Control Panel. In the Control Panel, click System and Security and then click Administrative Tools. In Administrative Tools, double-click Windows Firewall with Advanced Security. Or you can even direct access by typing "WF.msc" in the Run textbox in the start menu.
#Select Inbound Rules in the left pane and click New Rule under Inbound Rules in the Actions Pane. The New Inbound Rule Wizard will launch.  
+
# Select Inbound Rules in the left pane and click New Rule under Inbound Rules in the Actions Pane. The New Inbound Rule Wizard will launch.  
#First on '''Rule Type''' screen, select '''Port'''. Click Next to continue.  
+
# First on '''Rule Type''' screen, select '''Port'''. Click Next to continue.  
#On '''Protocol and Ports''' screen, select '''TCP''', then select '''Specific local ports:''' and fill in the value '''9000''' (if standalone mode; If grid mode, it will be '''8002'''). Click Next to continue.  
+
# On '''Protocol and Ports''' screen, select '''TCP''', then select '''Specific local ports:''' and fill in the value '''9000''' (if standalone mode; If grid mode, it will be '''8002'''). Click Next to continue.  
#On '''Action''' screen, select '''Allow the connection'''. Click Next to continue.
+
# On '''Action''' screen, select '''Allow the connection'''. Click Next to continue.
#On '''Profile''' screen, leave it as is and click Next to continue.
+
# On '''Profile''' screen, leave it as is and click Next to continue.
#On '''Name''' screen, give the rule a name and any description. Click Finish to create the rule.
+
# On '''Name''' screen, give the rule a name and any description. Click Finish to create the rule.
#Repeat 2-7 step above to create the same rule for '''UDP''' as well.
+
# Repeat 2-7 step above to create the same rule for '''UDP''' as well.
  
  
==McAfee Security==
+
== McAfee Security ==
  
 
McAfee Security does not allow applications to listen on ports not explicitly specified. You have two options: 1) disable firewall protection all together, 2) enable <tt>OpenSim.exe</tt> to be able to open ports.  
 
McAfee Security does not allow applications to listen on ports not explicitly specified. You have two options: 1) disable firewall protection all together, 2) enable <tt>OpenSim.exe</tt> to be able to open ports.  
Line 33: Line 33:
  
  
=Linux=
+
= Linux =
  
==Ipconfig==
+
== Ipconfig ==
  
 
If you run 'iptables -L' as root user, and you'll find some rules as a result, then this type of firewall is running on your system. To modify to enable remote access:
 
If you run 'iptables -L' as root user, and you'll find some rules as a result, then this type of firewall is running on your system. To modify to enable remote access:
Line 54: Line 54:
 
</pre>
 
</pre>
  
==SuSE Firewall2==
+
== SuSE Firewall2 ==
  
 
If you have newly installed openSuSE, you'll find this kind of firewall is active by default. To let external viewers access OpenSimulator, edit the configuration file:
 
If you have newly installed openSuSE, you'll find this kind of firewall is active by default. To let external viewers access OpenSimulator, edit the configuration file:

Revision as of 19:02, 3 March 2012

This page will discuss about the firewall settings for each operation systems or distributions.


Contents

Widows

Windows Firewall

On Server 2008, Vista or Windows 7, you'll need to configure the "Windows Firewall with Advanced Security" to enable access from the viewers on another machines. Here's what you can do:

  1. Click Start and then click Control Panel. In the Control Panel, click System and Security and then click Administrative Tools. In Administrative Tools, double-click Windows Firewall with Advanced Security. Or you can even direct access by typing "WF.msc" in the Run textbox in the start menu.
  2. Select Inbound Rules in the left pane and click New Rule under Inbound Rules in the Actions Pane. The New Inbound Rule Wizard will launch.
  3. First on Rule Type screen, select Port. Click Next to continue.
  4. On Protocol and Ports screen, select TCP, then select Specific local ports: and fill in the value 9000 (if standalone mode; If grid mode, it will be 8002). Click Next to continue.
  5. On Action screen, select Allow the connection. Click Next to continue.
  6. On Profile screen, leave it as is and click Next to continue.
  7. On Name screen, give the rule a name and any description. Click Finish to create the rule.
  8. Repeat 2-7 step above to create the same rule for UDP as well.


McAfee Security

McAfee Security does not allow applications to listen on ports not explicitly specified. You have two options: 1) disable firewall protection all together, 2) enable OpenSim.exe to be able to open ports.

Disable Firewall - Open McAfee SecurityCenter. Select "Internet & Network". In the lower left corner is a small link to "Configure...". Select this. In the right side of the window, select the bar that says "Firewall protection is enabled". Here you can select "Off".

Enable OpenSim.exe to Open Ports - Open McAfee SecurityCenter. Select "Internet & Network". In the lower left corner is a small link to "Configure...". Select this. In the right side of the window, select the bar that says "Firewall protection is enabled". Select the "Advanced..." button. This will pop up a new window.

In the new window, on the left side, select "Program Permissions." In the middle on the right side of the window, select the "Add Allowed Program" button. Use the browser that pops up to find the OpenSim executable and select it.

Finally, select "OK" and exit the McAfee SecurityCenter window.


Linux

Ipconfig

If you run 'iptables -L' as root user, and you'll find some rules as a result, then this type of firewall is running on your system. To modify to enable remote access:

iptables -A INPUT -p tcp --dport 9000 -j ACCEPT
iptables -A INPUT -p udp --dport 9000 -j ACCEPT

or if your firewall uses chains (like CentOS):

iptables -I RH-Firewall-1-INPUT -p tcp --dport 9000 -j ACCEPT
iptables -I RH-Firewall-1-INPUT -p udp --dport 9000 -j ACCEPT

and run these commands to reflect the change:

iptables-save
iptables-save > /etc/sysconfig/iptables
service iptables restart

SuSE Firewall2

If you have newly installed openSuSE, you'll find this kind of firewall is active by default. To let external viewers access OpenSimulator, edit the configuration file:

sudo vi /etc/sysconfig/SuSEfirewall2

Inside this file, you'll find the two lines including "FW_SERVICES_EXT_TCP" and "FW_SERVICES_EXT_UDP". Change them so that they look like:

FW_SERVICES_EXT_UDP="9000" # for standalone / use "8002" if grid mode
...
FW_SERVICES_EXT_TCP="9000" # same as above

and save it.

Finally, run reload command:

sudo /sbin/SuSEfirewall2
Personal tools
General
About This Wiki