Installation
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

installation start up

taelee94
New Member
‎12-01-2010 01:09 AM

Hi,

I'm new to splunk and Linux. I installed it to a CentOS 5.4 server and tried to get to http://splunk server:8000 but it would't come up unless iptable is stopped.

So I added an entry into iptables as below:

iptables -A INPUT -p tcp --dport 8000 -j ACCEPT

And after that I restarted iptables services but it still won't work.

Any suggestions or idea would be greatly appreciated.

Thanks,

Tags (1)
0 Karma
Reply

dwaddle
SplunkTrust
SplunkTrust
‎12-01-2010 02:18 AM

When you restarted iptables, you probably blew away the rule you added. Running the iptables command at the shell prompt only updates the in-memory filter table. You should add your rule in the proper place in /etc/sysconfig/iptables and then restart the iptables services. After the restart, verify your rule is there using iptables -nL.

Reply

dwaddle
SplunkTrust
SplunkTrust
‎12-01-2010 03:33 PM

Also, please click the checkbox to the left of my answer to accept it as "correct" - Thanks!

0 Karma
Reply

dwaddle
SplunkTrust
SplunkTrust
‎12-01-2010 03:32 PM

I've never used lokkit - but it sounds like it may not read the /etc/sysconfig/iptables file itself and/or it flushes the ruleset. You might use 'system-config-firewall' instead. (Me personally, I always just edit the file in /etc/sysconfig)

0 Karma
Reply

taelee94
New Member
‎12-01-2010 06:50 AM

Thanks and it worked!! However, I noticed something very strange. Whenever I start lokkit, any rules I added to /etc/sysconfig/iptables get deleted. I don't understand why...

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Detection Engineering Office Hours: Real-World Troubleshooting & Q&A

[REGISTER HERE] This thread is for the Community Office Hours session on Detection Engineering Office Hours: ...

Developer Spotlight with Mika Borner

From Hackathon Winner to Enterprise Leader    Mika Borner, CEO and Founder of Datapunctum AG, has been ...

Continue Your Federation Journey: Join Session 3 of the Bootcamp Series

To help practitioners build a stronger foundation, we launched the Data Management & Federation ...