cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
ghooton
Level 2

Linux firewall settings

Jump to solution

I have FlexLM on a Linux RHEL 8 server.

However, the firewall is preventing connections to it.

I use FlexLM for Cadence which uses port 5280

# lsof -i -P -n |grep 5280
lmgrd 4407 cad 0u IPv6 60171 0t0 TCP *:5280 (LISTEN)
lmgrd 4407 cad 7u IPv6 46850 0t0 TCP 127.0.0.1:5280->127.0.0.1:45134 (ESTABLISHED)
lmgrd 4407 cad 8u IPv6 79538 0t0 TCP 127.0.0.1:5280->127.0.0.1:45144 (ESTABLISHED)
cdslmd 4409 cad 0u IPv6 60171 0t0 TCP *:5280 (LISTEN)
cdslmd 4409 cad 12u IPv4 60184 0t0 TCP 127.0.0.1:45144->127.0.0.1:5280 (ESTABLISHED)
verplex 4410 cad 0u IPv6 60171 0t0 TCP *:5280 (LISTEN)
verplex 4410 cad 9u IPv4 91009 0t0 TCP 127.0.0.1:45134->127.0.0.1:5280 (ESTABLISHED)

I used the following command but it did not allow access

firewall-cmd --zone=public --permanent --add-port=5280/tcp

Is this the correct way to open a port on a Linux firewall?

Are there any other ports that need to be open?

 

 

0 Kudos
(1) Solution

Thanks,

Go it to work,  by adding the following ports.

lsof -i -P -n |grep verplex
verplex 4410 cad 0u IPv6 60171 0t0 TCP *:5280 (LISTEN)
verplex 4410 cad 7u IPv6 79536 0t0 TCP *:44739 (LISTEN)

lsof -i -P -n |grep cdslmd
cdslmd 4409 cad 0u IPv6 60171 0t0 TCP *:5280 (LISTEN)
cdslmd 4409 cad 7u IPv6 79531 0t0 TCP *:35671 (LISTEN)
cdslmd 4409 cad 9u IPv4 91020 0t0 UDP *:5285
cdslmd 4409 cad 11u IPv6 83451 0t0 UDP *:5286

====

lsof -i -P -n |grep lmgrd
lmgrd 4407 cad 0u IPv6 60171 0t0 TCP *:5280 (LISTEN)

 

Not sure if I needed the UDP ports??

View solution in original post

0 Kudos
(2) Replies
jyadav
Flexera Alumni

Hi  @ghooton ,

If you are running the Vendor Daemon on a specific port then even that port should be open and accessible. If not then just the port 5280 should work fine for you.

To open a port on a Linux firewall use the below commands

firewall-cmd --permanent --zone=public --add-port=5280/tcp
firewall-cmd --reload //to reload the firewall rules
firewall-cmd --list-all //you can verify the firewall rules 

 

0 Kudos

Thanks,

Go it to work,  by adding the following ports.

lsof -i -P -n |grep verplex
verplex 4410 cad 0u IPv6 60171 0t0 TCP *:5280 (LISTEN)
verplex 4410 cad 7u IPv6 79536 0t0 TCP *:44739 (LISTEN)

lsof -i -P -n |grep cdslmd
cdslmd 4409 cad 0u IPv6 60171 0t0 TCP *:5280 (LISTEN)
cdslmd 4409 cad 7u IPv6 79531 0t0 TCP *:35671 (LISTEN)
cdslmd 4409 cad 9u IPv4 91020 0t0 UDP *:5285
cdslmd 4409 cad 11u IPv6 83451 0t0 UDP *:5286

====

lsof -i -P -n |grep lmgrd
lmgrd 4407 cad 0u IPv6 60171 0t0 TCP *:5280 (LISTEN)

 

Not sure if I needed the UDP ports??

0 Kudos