Installation
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

installation start up

taelee94
New Member
‎12-01-2010 01:09 AM

Hi,

I'm new to splunk and Linux. I installed it to a CentOS 5.4 server and tried to get to http://splunk server:8000 but it would't come up unless iptable is stopped.

So I added an entry into iptables as below:

iptables -A INPUT -p tcp --dport 8000 -j ACCEPT

And after that I restarted iptables services but it still won't work.

Any suggestions or idea would be greatly appreciated.

Thanks,

Tags (1)
0 Karma
Reply

dwaddle
SplunkTrust
SplunkTrust
‎12-01-2010 02:18 AM

When you restarted iptables, you probably blew away the rule you added. Running the iptables command at the shell prompt only updates the in-memory filter table. You should add your rule in the proper place in /etc/sysconfig/iptables and then restart the iptables services. After the restart, verify your rule is there using iptables -nL.

Reply

dwaddle
SplunkTrust
SplunkTrust
‎12-01-2010 03:33 PM

Also, please click the checkbox to the left of my answer to accept it as "correct" - Thanks!

0 Karma
Reply

dwaddle
SplunkTrust
SplunkTrust
‎12-01-2010 03:32 PM

I've never used lokkit - but it sounds like it may not read the /etc/sysconfig/iptables file itself and/or it flushes the ruleset. You might use 'system-config-firewall' instead. (Me personally, I always just edit the file in /etc/sysconfig)

0 Karma
Reply

taelee94
New Member
‎12-01-2010 06:50 AM

Thanks and it worked!! However, I noticed something very strange. Whenever I start lokkit, any rules I added to /etc/sysconfig/iptables get deleted. I don't understand why...

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Announcing Modern Navigation: A New Era of Splunk User Experience

We are excited to introduce the Modern Navigation feature in the Splunk Platform, available to both cloud and ...

Modernize your Splunk Apps – Introducing Python 3.13 in Splunk

We are excited to announce that the upcoming releases of Splunk Enterprise 10.2.x and Splunk Cloud Platform ...

Step into “Hunt the Insider: An Splunk ES Premier Mystery” to catch a cybercriminal ...

After a whole week of being on call, you fell asleep on your keyboard, and you hit a sequence of buttons that ...