Nxnode hangs with iptables

Forum / NoMachine for Linux / Nxnode hangs with iptables

Tagged: 

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • June 2, 2017 at 13:13 #14968
    jesnow
    Participant

    I’ve been running nx for some time but recently installed iptables. (gentoo/KDE stable), I run sshd on port 222, and have nx 5.2.21.

    The client is mac version 5.2.21.

    When I start nx it hangs:

    Merckx  jesnow # /etc/init.d/nxserver start
    NX> 161 Enabled service: nxserver.

    Until I stop iptables, then it completes and works. Here is my firewall

    Merckx jesnow # iptables -L -v –line-numbers
    Chain INPUT (policy DROP 727 packets, 83549 bytes)
    num   pkts bytes target     prot opt in     out     source               destination
    1      276 81293 ACCEPT     udp  —  any    any     anywhere             anywhere             multiport dports mdns
    2      345 21393 ACCEPT     tcp  —  any    any     anywhere             anywhere             multiport dports 4000
    3        8   480 DROP       all  —  any    any     112.196.77.202       anywhere
    4        4   240 DROP       all  —  any    any     115.249.65.130       anywhere
    5      112  6720 DROP       all  —  any    any     220.225.230.7        anywhere
    6      131  7860 DROP       all  —  any    any     213.167.44.170       anywhere
    7    1701K  390M ACCEPT     all  —  any    any     anywhere             anywhere             ctstate RELATED,ESTABLISHED
    8        2   124 ACCEPT     tcp  —  any    any     anywhere             anywhere             tcp dpt:222
    9        0     0 ACCEPT     tcp  —  any    any     anywhere             anywhere             tcp dpt:netbios-dgm
    10       0     0 ACCEPT     tcp  —  any    any     anywhere             anywhere             tcp dpt:netbios-ssn
    11      15   696 ACCEPT     tcp  —  any    any     anywhere             anywhere             tcp dpt:microsoft-ds
    12       5   228 ACCEPT     tcp  —  any    any     anywhere             anywhere             tcp dpt:3128
    13       0     0 ACCEPT     tcp  —  any    any     anywhere             anywhere             tcp dpt:mdns
    14       2    80 ACCEPT     tcp  —  any    any     anywhere             anywhere             tcp dpt:afs3-callback
    15      19  1164 ACCEPT     tcp  —  any    any     anywhere             anywhere             tcp dpt:4000
    16       7   459 ACCEPT     icmp —  any    any     anywhere             anywhere
    17     234  8190 ACCEPT     udp  —  any    any     anywhere             anywhere             multiport dports 4011:4999

     

    Note that I have only four hosts banned (dictionary attackers), and otherwise it is a wide-open system. I turned off the drop all default rule to try to get nxserver going, and it still won’t start.

    any help gratefully accepted.

    Jon.

    June 20, 2017 at 10:39 #15114
    Britgirl
    Keymaster

    Hello, we’ve not been able to reproduce on Gentoo, using SSH port set to 222 and by setting the same rules in iptables. What I suggest is you update to 5.3.9 and see if the problem persists and let us know.

  • Author
    Posts
Viewing 2 posts - 1 through 2 (of 2 total)

Closed because the user did not provide further feedback. Please notify us if you confirm that it is resolved or open a new topic if you have the same problem.