Quantcast
Channel: Raspberry Pi Forums
Viewing all articles
Browse latest Browse all 8621

Networking and servers • Re: Can only ping & SSH, despite no firewall (Bookworm)

May 25, 2025, 7:38 pm
$
0
0
Do you see anything more with sudo tcpdump -v -n port 5000 or icmp ?
Ok, that was enough to crack the case. Here's the output:

Code: 

pi4@raspberrypi:~ $ sudo tcpdump -v -n port 5000 or icmptcpdump: listening on eth0, link-type EN10MB (Ethernet), snapshot length 262144 bytes21:47:24.072290 IP (tos 0x0, ttl 64, id 0, offset 0, flags [none], proto TCP (6), length 64)    192.168.50.186.65353 > 192.168.50.37.5000: Flags [S], cksum 0x6637 (correct), seq 2540104521, win 65535, options [mss 1460,nop,wscale 6,nop,nop,TS val 1298728873 ecr 0,sackOK,eol], length 021:47:24.072378 IP (tos 0xc0, ttl 64, id 20269, offset 0, flags [none], proto ICMP (1), length 92)    192.168.50.37 > 192.168.50.186: ICMP host 192.168.50.37 unreachable - admin prohibited filter, length 72IP (tos 0x0, ttl 64, id 0, offset 0, flags [none], proto TCP (6), length 64)    192.168.50.186.65353 > 192.168.50.37.5000: Flags [S], cksum 0x6637 (correct), seq 2540104521, win 65535, options [mss 1460,nop,wscale 6,nop,nop,TS val 1298728873 ecr 0,sackOK,eol], length 0^C2 packets captured2 packets received by filter0 packets dropped by kernel
That portion, "unreachable - admin prohibited filter", seemed to confirm there was some kind of firewall. That led me to https://unix.stackexchange.com/a/552871, which explained the firewall management mechanisms might have changed in the OS.

I'd seen a reference to check iptables, which showed all traffic as accepted:

Code: 

pi4@raspberrypi:~ $ sudo iptables -LChain INPUT (policy ACCEPT)target     prot opt source               destinationChain FORWARD (policy ACCEPT)...
Also ufw was not active (described in the OS docs):

Code: 

pi4@raspberrypi:~ $ sudo ufw statusStatus: inactive
But reading that answer got me looking at nftables and firewalld. I did find firewalld running:

Code: 

pi4@raspberrypi:~ $ systemctl status firewalld.service● firewalld.service - firewalld - dynamic firewall daemon     Loaded: loaded (/lib/systemd/system/firewalld.service; enabled; preset: enabled)     Active: active (running) since Sun 2025-05-25 20:06:30 EDT; 2h 6min ago       Docs: man:firewalld(1)   Main PID: 983 (firewalld)      Tasks: 2 (limit: 3892)        CPU: 2.169s     CGroup: /system.slice/firewalld.service             └─983 /usr/bin/python3 /usr/sbin/firewalld --nofork --nopid
The log output from that service shows various failures. I shut that down:

Code: 

pi4@raspberrypi:~ $ sudo systemctl stop firewalld.service
And at that point, the curl worked.

Code: 

❯ curl -v 192.168.50.37:5000*   Trying 192.168.50.37:5000...* Connected to 192.168.50.37 (192.168.50.37) port 5000> GET / HTTP/1.1...
I have a lot more to learn about all this, and I'm not sure how I got into this state (I did not intentionally touch firewalls at all), but wanted to respond promptly to share the progress. Thank you for all the help.

Statistics: Posted by more_of_a_tart_guy — Mon May 26, 2025 2:38 am

Search
Viewing all articles
Browse latest Browse all 8621

Trending Articles

RAMAYAMPET Mandal Sarpanch | Upa-Sarpanch | Ward member Mobile Numbers Medak...

May 24, 2017, 2:00 am

लड़कियां सेक्स के दौरान क्यों करती है उह! आह!लड़कियां सेक्स के दौरान क्यों करती...

May 19, 2016, 1:54 am

Neem Baba Extra Questions Answer Class 6 English Poorvi

February 1, 2025, 5:19 am

Throw Back: 4×4 — Sikilitele (Ft Castro) Prod by JQ

March 5, 2015, 8:24 am

Rajasthan Board 10th Result 2016 Roll No wise & Name Wise

August 20, 2016, 5:13 pm

Lowe faces four theft charges

November 14, 2017, 6:52 pm

Practice Sheet of Right form of verbs for HSC Students

September 22, 2019, 11:40 pm

Mafia, Murder & Mayhem In The Motor City: Detroit Mob Hit Timeline (1937-2007)

December 7, 2016, 3:57 pm

The 10 Tennessee Cities With The Largest Black Population For 2021

December 21, 2020, 10:12 am

Materials Around Us Class 6 Worksheet Science Chapter 6

October 3, 2024, 5:20 am

デスクトップ ヒープの枯渇

January 18, 2018, 8:31 pm

Best Suvichar in Hindi |बेस्ट सुविचार |शुभ विचार हिंदी में

March 7, 2020, 11:19 pm

Kanulanu Thaake Lyrics and translation | Manam (2014)

May 9, 2014, 5:45 am

Korean Sex Porn Videos: XXX Videos & Free Porn Movies

May 30, 2025, 9:29 pm

Teen Shot In Miami Drive-By Dies From Injuries

August 8, 2011, 1:16 pm

Download: IQ Muzatasha feat Shy D & Pmj – Ulesi NiFertilizer Yamavuto

March 22, 2018, 7:23 pm

Mahakal Attitude Status

February 29, 2020, 9:52 am

Property developer set up cannabis factory to help pay off debts...

August 3, 2015, 2:29 am

July 11, 2015, 6:15 am

KB: How to troubleshoot issues when adding a Hyper-V host in System Center...

August 14, 2012, 10:05 am
Search