[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Lost web interface w/ raq4
- Subject: Re: [cobalt-users] Lost web interface w/ raq4
- From: Grant Stern <grant@xxxxxxxxxxxxxx>
- Date: Wed Jun 5 17:33:31 2002
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
>>
>> Hey Jim, just a shot in the dark, but you may have port 81 blocked with
>> your new Watchguard firewall. It's used by the cobalt gui. Just a guess.
>>
>> BTW, save your Watchguard documentation. If you plan on keeping the
>> firewall for two years or more, they may lose your documentation, upgrade
>> path, etc. like they did for my now three year old firewall.
>>
>> Good luck,
>> gs
>>
>>
>
> Grant,
>
> Thanks for the clue. But I'm not sure it's the problem since the raq and
> my workstation are both on a switch, both on the same subnet, and they
> gateway to the firebox via the trusted interface. And the second raq, on
> a different subnet and plugged directly into the optional (DMZ)
> interface, I can log onto the Cobalt web gui. (Showing my ignorance?) On
> an off topic point to the Cobalts, how can I open up that port on the
> firebox - I've looked under the blocked ports and the default list of
> ports does not include 81 (there are frightfully few ports blocked on
> that list). I just would want it for the trusted part of the lan.
Umm, this sounds like a job for Watchguard tech support. The NAT that I use
(provided by my friends the colo people) has ipchains and does not block any
ports. It only opens specified ports, and only specified ports. You can
look thru the archives for more on ipchains (highly reccomended).
Just type this into whatever CLI you're using to term into your box.
ping yourboxipaddresshere:81
This command is universal (everyone feel free to point out a situation where
ping isn't ping) and will tell you absolutely whether you have port 81
access or not. Before you hit enter on the command, pray to the server
gods that you have port problem, if not, time for a restore.
Telnet, ewwwww. Go to pkgmaster.com and find yourself a copy of the OpenSSH
pkg. Turn off the telnet server once its installed, and get either Putty
for PC, MacSSH for mac and use that.
Brad, you said you wanted another machine, will Jim's do?????
Later
Gs