Hi All, I am new to CentOS and I signed up for a Mosso Cloud Server that runs Cent OS 5.2 I can ssh in. I ran: yum install vnc vnc-server then: vncserver (and set desktop viewing password) But I cannot connect. How do I add 5900 to the centos firewall? How do I edit the conf file? I only have SSH ability at this point... -jason
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Jason Todd Slack-Moehrle wrote:> Hi All, > > I am new to CentOS and I signed up for a Mosso Cloud Server that > runs Cent OS 5.2 > > I can ssh in. > > I ran: yum install vnc vnc-server then: vncserver (and set desktop > viewing password) > > But I cannot connect. > > How do I add 5900 to the centos firewall? How do I edit the conf > file? > > I only have SSH ability at this point... > > -jason _______________________________________________ CentOS > mailing list CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centos >Learn how to add ports to your iptables file, then it should work. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAknyQ+cACgkQe0Ain3PYkIboVACeP7YRfEm7BmLH6X4rvkcx55l/ 5CcAn1Y+7j2eZh86SatlwrvE3IHG2Zr6 =nxds -----END PGP SIGNATURE-----
On 24-Apr-09, at 3:51 PM, Jason Todd Slack-Moehrle wrote:> Hi All, > > I am new to CentOS and I signed up for a Mosso Cloud Server that runs > Cent OS 5.2 > > I can ssh in. > > I ran: yum install vnc vnc-server > then: vncserver (and set desktop viewing password) > > But I cannot connect. > > How do I add 5900 to the centos firewall? How do I edit the conf file? > > I only have SSH ability at this point... > > -jason > _______________________________________________ > CentOS mailing list > CentOS at centos.org > http://lists.centos.org/mailman/listinfo/centosYou can get into a FW cfg screen (sort of gui - ncurses I beleive) by running: # setup It should be pretty self explanatory once in there. d
Hello, all. I'm looking at building about a dozen CentOS VM's for a project. I have a desire to use kickstart for this coupled with PXE. I'm looking for a minimal ks.cfg file specifically, I want the bare minimum of software that is needed for a system to function. I will need sshd and yum as the only 'services or applications' on top of the OS. Does anyone have an example I can work with, or suggestions on getting to this minimal configuration? I'm just looking to save some time, rather than re-inventing what may and probably is already out there. Thanks Daniel
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 TRANSITIONAL//EN"> <HTML> <HEAD> <META HTTP-EQUIV="Content-Type" CONTENT="text/html; CHARSET=UTF-8"> <META NAME="GENERATOR" CONTENT="GtkHTML/3.16.1"> </HEAD> <BODY> <BR> <FONT COLOR="#000000">></FONT>> >> [root@Server1 bin]# man iptables <BR>> ><FONT COLOR="#000000">></FONT>> No manual entry for iptables <BR> > ><FONT COLOR="#000000">></FONT>> [root@Server1 bin]# man ipchains <BR> > ><FONT COLOR="#000000">></FONT>> No manual entry for ipchains <BR> > ><FONT COLOR="#000000">></FONT>> [root@Server1 bin]# <BR> > ><FONT COLOR="#000000">></FONT>> <BR> > >><FONT COLOR="#000000">></FONT><BR> > >><FONT COLOR="#000000">></FONT> So is there something wrong with what they set me up with? <BR> ><FONT COLOR="#000000">></FONT> <BR> > ><FONT COLOR="#000000">></FONT> seems as though you need to install iptables package <BR> ><FONT COLOR="#000000">></FONT> <BR> ><FONT COLOR="#000000">></FONT> [root@Server1 /]# uname -a <BR> ><FONT COLOR="#000000">></FONT> Linux Server1 2.6.24-23-xen #1 SMP Mon Jan 26 03:09:12 UTC 2009 x86_64 <BR> ><FONT COLOR="#000000">></FONT> x86_64 x86_64 GNU/Linux <BR> ><FONT COLOR="#000000">></FONT> <BR> ><FONT COLOR="#000000">></FONT> But if iptables is not installed, how is port 5900 being blocked? <BR><FONT COLOR="#000000">></FONT>---- <BR> <FONT COLOR="#000000">></FONT>maybe the xen host is blocking them. Maybe upstream router is blocking. <BR> <FONT COLOR="#000000">></FONT><BR> <FONT COLOR="#000000">></FONT>why not just use freenx and run everything through ssh port which <BR> <FONT COLOR="#000000">></FONT>clearly isn't blocked? It's faster and better anyway. <BR> <BR> <FONT COLOR="#000000">></FONT>Craig <BR> <BR> <FONT COLOR="#000000">Or you can use "X11Forwarding" sshd option. To use it you shoud put </FONT><BR> <FONT COLOR="#000000">"X11Forwarding yes" option to"/etc/ssh/sshd_config" on server side, and use </FONT><BR> <BR> <FONT COLOR="#000000">ssh -X username@server</FONT><BR> <BR> <FONT COLOR="#000000">command on client side to connect to the server. After it all GUI program</FONT><BR> <FONT COLOR="#000000">wich you will start on ssh-shell will display on client computer. (This all work </FONT><BR> <FONT COLOR="#000000">if your client computer is based on *nix system such is Linux, if you have MS Windows on client computer you </FONT><BR> <FONT COLOR="#000000">must use the xming+putty software to do this)</FONT> </BODY> </HTML>
On Friday 24 April 2009 18:51, Jason Todd Slack-Moehrle wrote:> How do I add 5900 to the centos firewall? How do I edit the conf file?I don't know your knowledge so.... Lets go through this step by step. Commands will be between []. Examples will be between ''. You are looking to see why port 5900 is blocked. Are you sure something is listening on this port? Check to see if port 5900 is listening with the following: [lsof -i] If that port is not listed or if the service is listening on another port you should see this now. If not then start the service and try to connect again. Still having issues connecting then we should check the firewall. First lets see if the firewall is up: [service iptables status] If the firewall is up this should give you a list of all the rules present. If the firewall is not running it will state firewall is not running. If the firewall is not running, vcn is running and you still cannot connect the problem is outside your control and you will have to talke with your service provider. Even if the firewall is running the service provider can still be blocking the port so after ensureing/configuring the below and you are still unable to connect you need to contact the service provider and question them. If the firewall is running you now have to figure out how it is being started. Some people use the default method (myself included) and some use scripts (which I believe is because they do not know how or understand how to configure the default setup). First let us check in what run level the system is started. [grep id: /etc/inittab] You should see something like 'id:3:initdefault:' This is run level 3 and all my startup scripts are going to start from '/etc/rc.d/rc3.d'. Look in this directory for anything that might be iptables or firewall related. As stated above some time a script other then the default is used to start the firewall. Do you see anything other then iptables? Scripts starting with a 'K' are not run and those with an 'S' are. We should also check rc.local to ensure there is nothing being started there that might over ride firewall if it is started in 'rc3.d'. If you have determined that the firewall is being started the default way and it is up and running then /etc/sysconfig/iptables is the file you have to look at and edit. If the firewall is being started using another method then you are going to have to look at that script to determine how to correct/update that script. You can edit the file with 'vim' or 'vi', depending on what is installed on your system, from the command line. Here is a link to a very good IPTABLES Tutorial. http://iptables.rlworkman.net/chunkyhtml/index.html -- Regards Robert Linux User #296285 http://counter.li.org
Jason Todd Slack-Moehrle wrote on Fri, 24 Apr 2009 15:51:13 -0700:> I only have SSH ability at this point...That's good enough. If you are not comfortable with managing the system from the command line then use Webmin. Some think that is unsafe, but it is surely several degrees safer than using blank VNC over the net. Kai -- Kai Sch?tzl, Berlin, Germany Get your web at Conactive Internet Services: http://www.conactive.com
on 4-24-2009 3:51 PM Jason Todd Slack-Moehrle spake the following:> Hi All, > > I am new to CentOS and I signed up for a Mosso Cloud Server that runs > Cent OS 5.2 > > I can ssh in. > > I ran: yum install vnc vnc-server > then: vncserver (and set desktop viewing password) > > But I cannot connect. > > How do I add 5900 to the centos firewall? How do I edit the conf file? > > I only have SSH ability at this point... > > -jasonIf I remember right, vnc runs on 5900+ the number of the server started. So the first one would be on 5901, the next on 5902, etc... -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 258 bytes Desc: OpenPGP digital signature URL: <http://lists.centos.org/pipermail/centos/attachments/20090429/92a8d0e9/attachment-0002.sig>