Find the answer to your Linux question:
Results 1 to 2 of 2
Hi all, I edited my firewall configuration file (SuSEfirewall2) while trying to configure an ftp server. The good news: ftp server is up and running perfectly. The bad news: all ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Just Joined!
    Join Date
    Dec 2009
    Posts
    1

    Can't Get Into Server


    Hi all, I edited my firewall configuration file (SuSEfirewall2) while trying to configure an ftp server. The good news: ftp server is up and running perfectly. The bad news: all other ports are blocked.

    I have full root privileges to this server, but I can't ssh into it now to fix the firewall. The server is off-site, and I was wondering if there is anyway I can remotely restart the firewall or stop it so that I can fix it? I guess my only access is through ftp. I saved a backup of the firewall config file (SuSEfirewall2), and I can replace it, but I still need to restart the firewall. I know what I need to fix, I just can't get to it.

    Am I going to have to visit the server, or can this be done remotely in any way, through ftp, etc...?

    I would greatly appreciate any help.

  2. #2
    Trusted Penguin Irithori's Avatar
    Join Date
    May 2009
    Location
    Munich
    Posts
    3,412
    If a firewall could be remotely deacivated without authentication or root,
    I would consider that a bug, not a feature

    Afaik, there is no way of executing files via ftp.

    Do you have another server in the same network?
    I do not know your firewall rules, but maybe access from the same network is still possible?

    Does your server have a out-of-band management? And is it configured?
    That is: a (secured) webinterface to a small server in the actual server, that lets you power off and on the machine, and also gives you a local console.
    Second best would be a external KVM (keyboard, video,mouse) solution, that is reachable via net.

    Another option: you could call your provider and ask for "remote hands": someone, who does a cold reboot of the machine. Yeah, that's not a nice thing to do. Also you have to make sure somehow (via ftp?) that the fire wall does not get started

    Last option is to go to that datacenter yourself.
    You must always face the curtain with a bow.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •