port 53 closed and port 80 open

Issues related to configuring your network
Post Reply
rroopstr
Posts: 11
Joined: 2016/04/28 20:05:55

port 53 closed and port 80 open

Post by rroopstr » 2016/05/27 18:10:45

I need port 53 open for BIND configuration, after many tests I still get the following:

# firewall-cmd --zone=public --list-all
public (default)
interfaces:
sources:
services: dhcpv6-client dns http https smtp ssh
ports: 53/tcp 443/tcp 80/tcp 25/tcp 53/udp
masquerade: no
forward-ports:
icmp-blocks:
rich rules:

# nmap -p 53 5.226.169.119
Starting Nmap 6.40 ( http://nmap.org ) at 2016-05-27 13:50 BOT
Nmap scan report for mlp.riverocooper.com (5.226.169.119)
Host is up (0.000057s latency).
PORT STATE SERVICE
53/tcp closed domain

# nmap -p 80 5.226.169.119
Starting Nmap 6.40 ( http://nmap.org ) at 2016-05-27 13:50 BOT
Nmap scan report for mlp.riverocooper.com (5.226.169.119)
Host is up (0.000058s latency).
PORT STATE SERVICE
80/tcp open http

# systemctl status firewalld
* firewalld.service - firewalld - dynamic firewall daemon
Loaded: loaded (/usr/lib/systemd/system/firewalld.service; enabled; vendor preset: enabled)
Active: active (running) since Fri 2016-05-27 13:46:15 BOT; 12min ago
Main PID: 3263 (firewalld)
CGroup: /system.slice/firewalld.service
`-3263 /usr/bin/python -Es /usr/sbin/firewalld --nofork --nopid

May 27 13:46:14 mlp systemd[1]: Starting firewalld - dynamic firewall daemon...
May 27 13:46:15 mlp systemd[1]: Started firewalld - dynamic firewall daemon.
May 27 13:46:15 mlp firewalld[3263]: 2016-05-27 13:46:15 ERROR: ebtables not usable, disabling ethernet bridge firewall.

rroopstr
Posts: 11
Joined: 2016/04/28 20:05:55

Re: port 53 closed and port 80 open

Post by rroopstr » 2016/05/27 19:50:06

# /usr/sbin/firewalld --nofork --nopid --debug 10
2016-05-27 15:07:42 DEBUG2: firewall.core.ebtables.ebtables: /sbin/ebtables -t filter -L
2016-05-27 15:07:42 DEBUG1: ebtables table 'filter' does not exist.
2016-05-27 15:07:42 DEBUG2: firewall.core.ebtables.ebtables: /sbin/ebtables -t broute -L
2016-05-27 15:07:42 DEBUG1: ebtables table 'broute' does not exist.
2016-05-27 15:07:42 DEBUG2: firewall.core.ebtables.ebtables: /sbin/ebtables -t nat -L
2016-05-27 15:07:42 DEBUG1: ebtables table 'nat' does not exist.

[root@mlp sbin]# /usr/sbin/ebtables -t filter -L
The kernel doesn't support the ebtables 'filter' table.
[root@mlp sbin]# /usr/sbin/ebtables -t broute -L
The kernel doesn't support the ebtables 'broute' table.
[root@mlp sbin]# /usr/sbin/ebtables -t nat -L
The kernel doesn't support the ebtables 'nat' table.

User avatar
TrevorH
Forum Moderator
Posts: 29714
Joined: 2009/09/24 10:40:56
Location: Brighton, UK

Re: port 53 closed and port 80 open

Post by TrevorH » 2016/05/27 23:10:41

Is anything listening on the ports behind the firewall? If not then they will appear closed. Also, I thin you omitted the -sU parameter from your nmap so it's only testing TCP not UDP.
CentOS 6 will die in November 2020 - migrate sooner rather than later!
Info for USB installs on http://wiki.centos.org/HowTos/InstallFromUSBkey
CentOS 5 is dead, do not use it.
Full time Geek, part time moderator. Use the FAQ Luke

Post Reply

Return to “CentOS 7 - Networking Support”