Firewall

[marmar24012]

systemctl status firewalld

a. Compare/ review output differences: Use tictacl script:

scc01:/user/jeffrey> ln -s ~dawidu/tictacl ~/tictacl

sccapp1:/> bash tictacl -o portcheck

Or, compare/ review manually: firewall-cmd --list-ports firewall-cmd --list-ports --permanent

firewall-cmd --list-all firewall-cmd --list-all --permanent

Compare & correct ports on the other APPs and/or WebLogic Servers. firewall-cmd --zone=public --add-port=29668/tcp firewall-cmd --zone=public --add-port=29668/tcp --permanent

vllabsbapp01:/SCC/user/scc# bash tictacl portdiff -h "vllabsbapp01 vllabsbapp02"

Checking SSH key and connection to vllabsbapp01 vllabsbapp02: Checking vllabsbapp01... Passed! Checking vllabsbapp02... Passed!

Checking firewall status on vllabsbapp01 vllabsbapp02: Checking vllabsbapp01... Passed! Checking vllabsbapp02... Passed!

Collecting firewall info from vllabsbapp01 vllabsbapp02: Collecting from vllabsbapp01... Done! Collecting from vllabsbapp02... Done!

Parsing TCP ports... TCP_Port vllabsbapp01 vllabsbapp02 1521 OPEN OPEN 6200 OPEN OPEN 7701 OPEN OPEN 8080 OPEN OPEN 8400 OPEN OPEN 29277 OPEN OPEN 29278 OPEN ---- 29454 OPEN OPEN 29455 OPEN ---- 32259 OPEN OPEN 32289 OPEN OPEN 32409 OPEN OPEN 32410 OPEN ---- 42000 OPEN ---- 42002 OPEN ---- 55059 OPEN ---- 32768-65500 OPEN OPEN

Parsing UDP ports... UDP_Port vllabsbapp01 vllabsbapp02

Parsing services... Service vllabsbapp01 vllabsbapp02 dhcpv6-client OPEN OPEN nfs OPEN OPEN ntp OPEN OPEN ssh OPEN OPEN