developers

    Forum Stats

  • 3,873,642 Users
  • 2,266,620 Discussions
  • 7,911,595 Comments

Discussions

port get filtered even after adding to both iptables and security list

Islam Khaled
Islam Khaled Member Posts: 2 Green Ribbon
edited Jan 12, 2022 10:49PM in OCI Networking

hello,

I have a cloud compute instance with ubuntu installed

recently i experienced this problem with more than one port, despite allowing them in rules in both ubuntu's iptables and clouds security list of the subnet of the vcn of the instance, always when trying to connect to these ports or test them in https://www.ipvoid.com/port-scan/ the port result is filtered so does anyone guessed what the problem is or what the solution may be ?

exmples for these ports are 445, 9091 and others

this is the rule in the iptables


and here is the rule in the security list


and the service is active and listening


Best Answer

  • Islam Khaled
    Islam Khaled Member Posts: 2 Green Ribbon
    Answer ✓

    Thanks Abhinav for your answer.

    All ingress and egress rules were just fine, it turned out that this issue was arised after installing iredmail, so after some search and digging deep, the problem was found to be because of "nftables" which iredmail uses to ban some ip addresses and which also appears to override iptable rules, so after uninstalling it everything came to normal.

Answers

  • User_VXCOX
    User_VXCOX Member Posts: 2 Green Ribbon

    Hi Islam,

    Please check egress security rule. Also, you enable Log Analytics and filter the rules associated with the IP Address of your compute Instance.

    Regards,

    Abhinav

  • Islam Khaled
    Islam Khaled Member Posts: 2 Green Ribbon
    Answer ✓

    Thanks Abhinav for your answer.

    All ingress and egress rules were just fine, it turned out that this issue was arised after installing iredmail, so after some search and digging deep, the problem was found to be because of "nftables" which iredmail uses to ban some ip addresses and which also appears to override iptable rules, so after uninstalling it everything came to normal.

developers