Trying to open port 443 on Debian Linux. What am I doing wrong?

port-443 iptables port
20,227

Your command likely went through just fine. The second output is expected behaviour: Pretty much nothing you can configure via iptables directly affects what netstat will display.

  • netstat -tlpn shows you services ready to accept connections (you have none for port 443 running). Add the -p and it will also tell you the name of the program, which makes it much more helpful.
  • iptables -vnL lists rules by which packets will be processed/blocked before reaching any such server. This is the list that tells you "which ports are opened".

What you want to do for further testing is actually start the server you wish to make available. A web server, i assume. If that server has not started, you want to examine its logs. Its likely a webserver will not occupy port 443 if certificate configuration is broken.

Share:
20,227

Related videos on Youtube

instamattic
Author by

instamattic

Updated on September 18, 2022

Comments

  • instamattic
    instamattic over 1 year 
    iptables -A INPUT -p tcp --dport 443 -j ACCEPT

    followed by a 

    netstat -tln

    shows

    tcp        0      0 0.0.0.0:2822            0.0.0.0:*               LISTEN     
tcp        0      0 0.0.0.0:587             0.0.0.0:*               LISTEN     
tcp        0      0 0.0.0.0:110             0.0.0.0:*               LISTEN     
tcp        0      0 0.0.0.0:143             0.0.0.0:*               LISTEN     
tcp        0      0 0.0.0.0:10000           0.0.0.0:*               LISTEN     
tcp        0      0 0.0.0.0:21              0.0.0.0:*               LISTEN     
tcp        0      0 0.0.0.0:25              0.0.0.0:*               LISTEN     
tcp        0      0 0.0.0.0:2812            0.0.0.0:*               LISTEN     
tcp        0      0 0.0.0.0:993             0.0.0.0:*               LISTEN     
tcp        0      0 0.0.0.0:995             0.0.0.0:*               LISTEN     
tcp6       0      0 :::2822                 :::*                    LISTEN     
tcp6       0      0 :::587                  :::*                    LISTEN     
tcp6       0      0 :::110                  :::*                    LISTEN     
tcp6       0      0 :::143                  :::*                    LISTEN     
tcp6       0      0 :::80                   :::*                    LISTEN     
tcp6       0      0 :::25                   :::*                    LISTEN     
tcp6       0      0 :::993                  :::*                    LISTEN     
tcp6       0      0 :::995                  :::*                    LISTEN

    (Nothing about 443.) It's Debian wheezy.

    What am I doing wrong? Syntax?

  • Troy Osborne
    Troy Osborne over 7 years
    You could also do: sudo iptables -I INPUT 1 -p tcp --dport 443 -j ACCEPT to put the rule at the top of the list. Jenkins Wiki

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Block port 111 on centos 7
Cannot open port 8080
iptables firewall only allows internet traffic if source port of 80 is allowed
How to "shut off" all networking on Linux from bash?
Block all ports except SSH/HTTP in ipchains and iptables
How to block all ports except 80,443 with iptables?
No idea what is listening on port 80 in OS X
How do I get iptables to allow a new port (for a webserver sockets handler)
How to access the web page using specific port?
Opened some ports with iptables but they aren't open