[HELP-5847] FIWARE.Request.Lab.Spain.Cloud image port access problem - JIRA

Details

Type: extRequest
Status: Closed
Priority: Major
Resolution: Done
Fix Version/s: 2021
Component/s: FIWARE-LAB-HELP
Labels:
None

HD-Node:
Spain

Description

Dear all,

We have defined a Centos based image on the Fiware cloud platform and created some security rules for our integration tests.
Please see below, all the ports seem working except 5050 and we need this for our Cygnus installation.
We cant telnet to this specific port.

Could you please help us with this problem?

Thank, regards
Omer Ozdemir
Atos Research & Innovation

Bu mesaj ve ekleri gönderilen kiþiye özeldir ve gizli bilgiler içerebilir. Eðer mesajýn gönderilmek istendiði kiþi deðilseniz lütfen kopyalamayýnýz, baþkalarýna göndermeyiniz ve göndericiyi bilgilendiriniz. Internet üzerinden gönderilen mesajlarýn güvenli ve hatasýz olduðunun garantisi olmadýðýndan Atos grubu mesajýn içeriðinden sorumlu tutulamaz. Göndericinin bilgisayarý anti-virüs sistemleri tarafýndan taranmaktadýr, ancak yine de mesajýn virüs içermediði garanti edilemez ve gönderici, meydana gelebilecek zararlardan sorumlu tutulamaz.

This e-mail and the documents attached are confidential and intended solely for the addressee; it may also be privileged. If you receive this e-mail in error, please notify the sender immediately and destroy it. As its integrity cannot be secured on the Internet, the Atos group liability cannot be triggered for the message content. Although the sender endeavors to maintain a computer virus-free network, the sender does not warrant that this transmission is virus-free and will not be liable for any damages resulting from any virus transmitted.

Since January 1st, old domains won't be supported and messages sent to any domain different to @lists.fiware.org will be lost.
Please, send your messages using the new domain (Fiware-tech-help@lists.fiware.org) instead of the old one.
_______________________________________________
Fiware-tech-help mailing list
Fiware-tech-help@lists.fiware.org
https://lists.fiware.org/listinfo/fiware-tech-help

Options
- Sort By Name
- Sort By Date
- Ascending
- Descending
- Download All

Attachments

Picture (Device Independent Bitmap) 1.jpg

12 kB

09/Feb/16 10:24 AM

Activity

Ascending order - Click to sort in descending order

Hide

Permalink

ilknur chulani added a comment - 09/Feb/16 11:17 AM

Dear Spain node team,

The tenant id for our community account is: ilknur-chulani cloud (ID 00000000000000000000000000009378)

Omer created a security rule for port 5050 in this cloud resource, but we believe it is not accessible. Could you kindly take a look and let us know if we need to set this security rule in a different way?

Many thanks,

ilknur

Show

ilknur chulani added a comment - 09/Feb/16 11:17 AM Dear Spain node team, The tenant id for our community account is: ilknur-chulani cloud (ID 00000000000000000000000000009378) Omer created a security rule for port 5050 in this cloud resource, but we believe it is not accessible. Could you kindly take a look and let us know if we need to set this security rule in a different way? Many thanks, ilknur

8 older comments

Hide

Permalink

Ozdemir, Omer added a comment - 18/Feb/16 10:50 AM

Hello Jose,

Well we are trying to make this port open for a couple of days and I never saw it was open tbh..
nor telnet from outside. nor wget localhost:5050 inside the machine..

We have defined the port in iptables, Im not expert on system adm. area but to me, it should've worked

Show

Ozdemir, Omer added a comment - 18/Feb/16 10:50 AM Hello Jose, Well we are trying to make this port open for a couple of days and I never saw it was open tbh.. nor telnet from outside. nor wget localhost:5050 inside the machine.. We have defined the port in iptables, Im not expert on system adm. area but to me, it should've worked

Hide

Permalink

FW External User added a comment - 18/Feb/16 5:17 PM

Hello,

By default CentOS works this way: It has its own firewall and this
firewall is only opened for port 22. — We have to choosen to respect
the CentOS philosophy and let the instances work the same way CentOS
does because it is the way CentOS is expected to work.

However, as you said, you may need some previous knownledge in system
administration if you decide to use CentOS. To this aspect, Ubuntu is
much easier and ready to use than CentOS.
Regards,
José Ignacio.

________________________________

Este mensaje y sus adjuntos se dirigen exclusivamente a su destinatario, puede contener información privilegiada o confidencial y es para uso exclusivo de la persona o entidad de destino. Si no es usted. el destinatario indicado, queda notificado de que la lectura, utilización, divulgación y/o copia sin autorización puede estar prohibida en virtud de la legislación vigente. Si ha recibido este mensaje por error, le rogamos que nos lo comunique inmediatamente por esta misma vía y proceda a su destrucción.

The information contained in this transmission is privileged and confidential information intended only for the use of the individual or entity named above. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this transmission in error, do not read it. Please immediately reply to the sender that you have received this communication in error and then delete it.

Esta mensagem e seus anexos se dirigem exclusivamente ao seu destinatário, pode conter informação privilegiada ou confidencial e é para uso exclusivo da pessoa ou entidade de destino. Se não é vossa senhoria o destinatário indicado, fica notificado de que a leitura, utilização, divulgação e/ou cópia sem autorização pode estar proibida em virtude da legislação vigente. Se recebeu esta mensagem por erro, rogamos-lhe que nos o comunique imediatamente por esta mesma via e proceda a sua destruição

Show

FW External User added a comment - 18/Feb/16 5:17 PM Hello, By default CentOS works this way: It has its own firewall and this firewall is only opened for port 22. — We have to choosen to respect the CentOS philosophy and let the instances work the same way CentOS does because it is the way CentOS is expected to work. However, as you said, you may need some previous knownledge in system administration if you decide to use CentOS. To this aspect, Ubuntu is much easier and ready to use than CentOS. Regards, José Ignacio. ________________________________ Este mensaje y sus adjuntos se dirigen exclusivamente a su destinatario, puede contener información privilegiada o confidencial y es para uso exclusivo de la persona o entidad de destino. Si no es usted. el destinatario indicado, queda notificado de que la lectura, utilización, divulgación y/o copia sin autorización puede estar prohibida en virtud de la legislación vigente. Si ha recibido este mensaje por error, le rogamos que nos lo comunique inmediatamente por esta misma vía y proceda a su destrucción. The information contained in this transmission is privileged and confidential information intended only for the use of the individual or entity named above. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this transmission in error, do not read it. Please immediately reply to the sender that you have received this communication in error and then delete it. Esta mensagem e seus anexos se dirigem exclusivamente ao seu destinatário, pode conter informação privilegiada ou confidencial e é para uso exclusivo da pessoa ou entidade de destino. Se não é vossa senhoria o destinatário indicado, fica notificado de que a leitura, utilização, divulgação e/ou cópia sem autorização pode estar proibida em virtude da legislação vigente. Se recebeu esta mensagem por erro, rogamos-lhe que nos o comunique imediatamente por esta mesma via e proceda a sua destruição

Hide

Permalink

Ozdemir, Omer added a comment - 18/Feb/16 5:58 PM

Hello Jose,

Yes I know Ubuntu is much more easier than Centos for sure but IDAS is suggested to be installed on Centos.
And we need this port 5050 accessible from the internet.

As I mentioned in my previous emails we have defined security group in Cloud portal as documented and added this port in iptables.

But at the end we are not able to telnet or access this port...

I've sent you the iptables and the rules previously.

Do you have any advise for us? How can we open this port?

Thanks kind regards
Omer

Show

Ozdemir, Omer added a comment - 18/Feb/16 5:58 PM Hello Jose, Yes I know Ubuntu is much more easier than Centos for sure but IDAS is suggested to be installed on Centos. And we need this port 5050 accessible from the internet. As I mentioned in my previous emails we have defined security group in Cloud portal as documented and added this port in iptables. But at the end we are not able to telnet or access this port... I've sent you the iptables and the rules previously. Do you have any advise for us? How can we open this port? Thanks kind regards Omer

Hide

Permalink

ilknur chulani added a comment - 19/Feb/16 10:35 AM

Hi Jose Ignacio,

Thanks very much. Could you please let us know how you opened the port please? As we may need to do this for another GE instance.

Thanks,

ilknur

Show

ilknur chulani added a comment - 19/Feb/16 10:35 AM Hi Jose Ignacio, Thanks very much. Could you please let us know how you opened the port please? As we may need to do this for another GE instance. Thanks, ilknur

Hide

Permalink

FW External User added a comment - 19/Feb/16 10:41 AM

I've done some "recapitulation" based on you case here:
https://ask.fiware.org/question/386/cloud-security-groups-not-working-with-centos/

Please, feel free to comment on the response with your experience.

Regards,
José Ignacio.

________________________________

Show

FW External User added a comment - 19/Feb/16 10:41 AM I've done some "recapitulation" based on you case here: https://ask.fiware.org/question/386/cloud-security-groups-not-working-with-centos/ Please, feel free to comment on the response with your experience. Regards, José Ignacio. ________________________________ Este mensaje y sus adjuntos se dirigen exclusivamente a su destinatario, puede contener información privilegiada o confidencial y es para uso exclusivo de la persona o entidad de destino. Si no es usted. el destinatario indicado, queda notificado de que la lectura, utilización, divulgación y/o copia sin autorización puede estar prohibida en virtud de la legislación vigente. Si ha recibido este mensaje por error, le rogamos que nos lo comunique inmediatamente por esta misma vía y proceda a su destrucción. The information contained in this transmission is privileged and confidential information intended only for the use of the individual or entity named above. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this transmission in error, do not read it. Please immediately reply to the sender that you have received this communication in error and then delete it. Esta mensagem e seus anexos se dirigem exclusivamente ao seu destinatário, pode conter informação privilegiada ou confidencial e é para uso exclusivo da pessoa ou entidade de destino. Se não é vossa senhoria o destinatário indicado, fica notificado de que a leitura, utilização, divulgação e/ou cópia sem autorização pode estar proibida em virtude da legislação vigente. Se recebeu esta mensagem por erro, rogamos-lhe que nos o comunique imediatamente por esta mesma via e proceda a sua destruição

People

Assignee:

José Ignacio Carretero Guarde

Reporter:

Ozdemir, Omer

Votes:

0 Vote for this issue

Watchers:

3 Start watching this issue

Dates

Created:

09/Feb/16 10:24 AM

Updated:

27/May/21 10:55 AM

Resolved:

19/Feb/16 10:20 AM

Agile

View on Board