Firewall Settings
From OpenSimulator
| (4 intermediate revisions by 2 users not shown) | |||
| Line 1: | Line 1: | ||
| − | {{ | + | {{Quicklinks}} |
| − | This page will discuss | + | This page will discuss firewall settings for each operating system or distribution. For more information on what addresses and ports need to be available externally, please see [[Network Settings]]. |
| + | = Windows = | ||
| − | + | == Windows Firewall == | |
| − | + | ||
| − | ==Windows Firewall== | + | |
On Server 2008, Vista or Windows 7, you'll need to configure the "Windows Firewall with Advanced Security" to enable access from the viewers on another machines. Here's what you can do: | On Server 2008, Vista or Windows 7, you'll need to configure the "Windows Firewall with Advanced Security" to enable access from the viewers on another machines. Here's what you can do: | ||
| − | #Click Start and then click Control Panel. In the Control Panel, click System and Security and then click Administrative Tools. In Administrative Tools, double-click Windows Firewall with Advanced Security. Or you can even direct access by typing "WF.msc" in the Run textbox in the start menu. | + | # Click Start and then click Control Panel. In the Control Panel, click System and Security and then click Administrative Tools. In Administrative Tools, double-click Windows Firewall with Advanced Security. Or you can even direct access by typing "WF.msc" in the Run textbox in the start menu. |
| − | #Select Inbound Rules in the left pane and click New Rule under Inbound Rules in the Actions Pane. The New Inbound Rule Wizard will launch. | + | # Select Inbound Rules in the left pane and click New Rule under Inbound Rules in the Actions Pane. The New Inbound Rule Wizard will launch. |
| − | #First on '''Rule Type''' screen, select '''Port'''. Click Next to continue. | + | # First on '''Rule Type''' screen, select '''Port'''. Click Next to continue. |
| − | #On '''Protocol and Ports''' screen, select '''TCP''', then select '''Specific local ports:''' and fill in the value '''9000''' (if standalone mode; If grid mode, it will be '''8002'''). Click Next to continue. | + | # On '''Protocol and Ports''' screen, select '''TCP''', then select '''Specific local ports:''' and fill in the value '''9000''' (if standalone mode; If grid mode, it will be '''8002'''). Click Next to continue. |
| − | #On '''Action''' screen, select '''Allow the connection'''. Click Next to continue. | + | # On '''Action''' screen, select '''Allow the connection'''. Click Next to continue. |
| − | #On '''Profile''' screen, leave it as is and click Next to continue. | + | # On '''Profile''' screen, leave it as is and click Next to continue. |
| − | #On '''Name''' screen, give the rule a name and any description. Click Finish to create the rule. | + | # On '''Name''' screen, give the rule a name and any description. Click Finish to create the rule. |
| − | #Repeat 2-7 step above to create the same rule for '''UDP''' as well. | + | # Repeat 2-7 step above to create the same rule for '''UDP''' as well. |
| − | ==McAfee Security== | + | == McAfee Security == |
McAfee Security does not allow applications to listen on ports not explicitly specified. You have two options: 1) disable firewall protection all together, 2) enable <tt>OpenSim.exe</tt> to be able to open ports. | McAfee Security does not allow applications to listen on ports not explicitly specified. You have two options: 1) disable firewall protection all together, 2) enable <tt>OpenSim.exe</tt> to be able to open ports. | ||
| Line 28: | Line 27: | ||
Enable <tt>OpenSim.exe</tt> to Open Ports - Open McAfee SecurityCenter. Select "Internet & Network". In the lower left corner is a small link to "Configure...". Select this. In the right side of the window, select the bar that says "Firewall protection is enabled". Select the "Advanced..." button. This will pop up a new window. | Enable <tt>OpenSim.exe</tt> to Open Ports - Open McAfee SecurityCenter. Select "Internet & Network". In the lower left corner is a small link to "Configure...". Select this. In the right side of the window, select the bar that says "Firewall protection is enabled". Select the "Advanced..." button. This will pop up a new window. | ||
| − | In the new window, on the left side, select "Program Permissions." In the middle on the right side of the window, select the "Add Allowed Program" button. Use the browser that pops up to find the | + | In the new window, on the left side, select "Program Permissions." In the middle on the right side of the window, select the "Add Allowed Program" button. Use the browser that pops up to find the OpenSimulator executable and select it. |
Finally, select "OK" and exit the McAfee SecurityCenter window. | Finally, select "OK" and exit the McAfee SecurityCenter window. | ||
| − | =Linux= | + | = Linux = |
| − | ==Ipconfig== | + | == Ipconfig == |
If you run 'iptables -L' as root user, and you'll find some rules as a result, then this type of firewall is running on your system. To modify to enable remote access: | If you run 'iptables -L' as root user, and you'll find some rules as a result, then this type of firewall is running on your system. To modify to enable remote access: | ||
| Line 54: | Line 53: | ||
</pre> | </pre> | ||
| − | ==SuSE Firewall2== | + | == SuSE Firewall2 == |
If you have newly installed openSuSE, you'll find this kind of firewall is active by default. To let external viewers access OpenSimulator, edit the configuration file: | If you have newly installed openSuSE, you'll find this kind of firewall is active by default. To let external viewers access OpenSimulator, edit the configuration file: | ||
Latest revision as of 15:35, 21 July 2014
This page will discuss firewall settings for each operating system or distribution. For more information on what addresses and ports need to be available externally, please see Network Settings.
Contents |
[edit] Windows
[edit] Windows Firewall
On Server 2008, Vista or Windows 7, you'll need to configure the "Windows Firewall with Advanced Security" to enable access from the viewers on another machines. Here's what you can do:
- Click Start and then click Control Panel. In the Control Panel, click System and Security and then click Administrative Tools. In Administrative Tools, double-click Windows Firewall with Advanced Security. Or you can even direct access by typing "WF.msc" in the Run textbox in the start menu.
- Select Inbound Rules in the left pane and click New Rule under Inbound Rules in the Actions Pane. The New Inbound Rule Wizard will launch.
- First on Rule Type screen, select Port. Click Next to continue.
- On Protocol and Ports screen, select TCP, then select Specific local ports: and fill in the value 9000 (if standalone mode; If grid mode, it will be 8002). Click Next to continue.
- On Action screen, select Allow the connection. Click Next to continue.
- On Profile screen, leave it as is and click Next to continue.
- On Name screen, give the rule a name and any description. Click Finish to create the rule.
- Repeat 2-7 step above to create the same rule for UDP as well.
[edit] McAfee Security
McAfee Security does not allow applications to listen on ports not explicitly specified. You have two options: 1) disable firewall protection all together, 2) enable OpenSim.exe to be able to open ports.
Disable Firewall - Open McAfee SecurityCenter. Select "Internet & Network". In the lower left corner is a small link to "Configure...". Select this. In the right side of the window, select the bar that says "Firewall protection is enabled". Here you can select "Off".
Enable OpenSim.exe to Open Ports - Open McAfee SecurityCenter. Select "Internet & Network". In the lower left corner is a small link to "Configure...". Select this. In the right side of the window, select the bar that says "Firewall protection is enabled". Select the "Advanced..." button. This will pop up a new window.
In the new window, on the left side, select "Program Permissions." In the middle on the right side of the window, select the "Add Allowed Program" button. Use the browser that pops up to find the OpenSimulator executable and select it.
Finally, select "OK" and exit the McAfee SecurityCenter window.
[edit] Linux
[edit] Ipconfig
If you run 'iptables -L' as root user, and you'll find some rules as a result, then this type of firewall is running on your system. To modify to enable remote access:
iptables -A INPUT -p tcp --dport 9000 -j ACCEPT iptables -A INPUT -p udp --dport 9000 -j ACCEPT
or if your firewall uses chains (like CentOS):
iptables -I RH-Firewall-1-INPUT -p tcp --dport 9000 -j ACCEPT iptables -I RH-Firewall-1-INPUT -p udp --dport 9000 -j ACCEPT
and run these commands to reflect the change:
iptables-save iptables-save > /etc/sysconfig/iptables service iptables restart
[edit] SuSE Firewall2
If you have newly installed openSuSE, you'll find this kind of firewall is active by default. To let external viewers access OpenSimulator, edit the configuration file:
sudo vi /etc/sysconfig/SuSEfirewall2
Inside this file, you'll find the two lines including "FW_SERVICES_EXT_TCP" and "FW_SERVICES_EXT_UDP". Change them so that they look like:
FW_SERVICES_EXT_UDP="9000" # for standalone / use "8002" if grid mode ... FW_SERVICES_EXT_TCP="9000" # same as above
and save it.
Finally, run reload command:
sudo /sbin/SuSEfirewall2
