cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Help
chokkareddy
Mission Specialist
Mission Specialist
a week ago
  • 432 Views

Unable to open TCP ports 80 and 443 in RHEL VM after upgrading from 9.4 to 9.5 kernel version.

Jump to solution

Unable to open TCP ports 80 and 443 in RHEL VM 9.5 kernel version.  Everything worked fine in the RHEL VM 9.4 after upgrading the kernel version to 9.5 i am getting the issue. Now i am able to connect only port 22 from outside of VM after configuring them in firewall also. Nginx service is also listing on the port 80.

Labels (1)
Labels
Join the discussion
1 Solution

Accepted Solutions
chokkareddy
Mission Specialist
Mission Specialist
Thursday
  • 181 Views

Jump to solution

Hello,

Below work around which i found helped me to solve the issue.

By adding the ports in the nft rules able to work with port 80.
and for accessing port 443 https.
If SELinux is enforcing and causing issues, you can create a permanent solution to allow Nginx access to the certificate files.
Below connamds are used to add ports in nft rules.
1. sudo nft add rule inet filter input tcp dport 80 accept
2. sudo nft add rule inet filter input tcp dport 443 accept

Below commands used to Permanently Set SELinux to Permissive Mode.
1. Edit the SELinux configuration file:
sudo vi /etc/selinux/config
2. Change the SELINUX=enforcing line to SELINUX=permissive to make it permissive after reboot.
3. Reboot the server to apply the change.

View solution in original post

3 Replies
cyb3rx
Flight Engineer
Flight Engineer
a week ago
  • 418 Views

Jump to solution

Hello,

do you mean after upgradation of RHEL from 9.4 to 9.5 or Kernel (I belive there's no kernel available with 9.X series)

could please share us the output of "uname -r"

and for your ports, please check the ports status by executing "ss -ltnp"

then try to curl it using localhost if that works then check the active zone of firwalld

firewall-cmd --get-active-zones

and check the port/serivces are correctly allowed,

firwall-cmd --list-all-zones

chokkareddy
Mission Specialist
Mission Specialist
a week ago
  • 412 Views

Jump to solution

Hello,

I mean after upgradation of RHEL from 9.4 to 9.5. curl using localhost it is working ,The output of "uname -r" is 5.14.0-503.14.1.el9_5.x86_64.

chokkareddy_1-1733821490711.png

 

chokkareddy_0-1733821315608.png

 

chokkareddy
Mission Specialist
Mission Specialist
Thursday
  • 182 Views

Jump to solution

Hello,

Below work around which i found helped me to solve the issue.

By adding the ports in the nft rules able to work with port 80.
and for accessing port 443 https.
If SELinux is enforcing and causing issues, you can create a permanent solution to allow Nginx access to the certificate files.
Below connamds are used to add ports in nft rules.
1. sudo nft add rule inet filter input tcp dport 80 accept
2. sudo nft add rule inet filter input tcp dport 443 accept

Below commands used to Permanently Set SELinux to Permissive Mode.
1. Edit the SELinux configuration file:
sudo vi /etc/selinux/config
2. Change the SELINUX=enforcing line to SELINUX=permissive to make it permissive after reboot.
3. Reboot the server to apply the change.

Join the discussion
You must log in to join this conversation.
Red Hat Learning Community

Red Hat

Learning Community

A collaborative learning environment, enabling open source skill development.

Red Hat Inc. Copyright ?2024 Red Hat, Inc. Privacy policy Terms of use