cancel
Showing results for 
Search instead for 
Did you mean: 
chokkareddy
Mission Specialist
Mission Specialist
  • 434 Views

Unable to open TCP ports 80 and 443 in RHEL VM after upgrading from 9.4 to 9.5 kernel version.

Jump to solution

Unable to open TCP ports 80 and 443 in RHEL VM 9.5 kernel version.  Everything worked fine in the RHEL VM 9.4 after upgrading the kernel version to 9.5 i am getting the issue. Now i am able to connect only port 22 from outside of VM after configuring them in firewall also. Nginx service is also listing on the port 80.

Labels (1)
1 Solution

Accepted Solutions
chokkareddy
Mission Specialist
Mission Specialist
  • 183 Views

Hello,

Below work around which i found helped me to solve the issue.

By adding the ports in the nft rules able to work with port 80.
and for accessing port 443 https.
If SELinux is enforcing and causing issues, you can create a permanent solution to allow Nginx access to the certificate files.
Below connamds are used to add ports in nft rules.
1. sudo nft add rule inet filter input tcp dport 80 accept
2. sudo nft add rule inet filter input tcp dport 443 accept

Below commands used to Permanently Set SELinux to Permissive Mode.
1. Edit the SELinux configuration file:
sudo vi /etc/selinux/config
2. Change the SELINUX=enforcing line to SELINUX=permissive to make it permissive after reboot.
3. Reboot the server to apply the change.

View solution in original post

3 Replies
cyb3rx
Flight Engineer
Flight Engineer
  • 420 Views

Hello,

do you mean after upgradation of RHEL from 9.4 to 9.5 or Kernel (I belive there's no kernel available with 9.X series)

could please share us the output of "uname -r"

and for your ports, please check the ports status by executing "ss -ltnp"

then try to curl it using localhost if that works then check the active zone of firwalld

firewall-cmd --get-active-zones

and check the port/serivces are correctly allowed,

firwall-cmd --list-all-zones

chokkareddy
Mission Specialist
Mission Specialist
  • 414 Views

Hello,

I mean after upgradation of RHEL from 9.4 to 9.5. curl using localhost it is working ,The output of "uname -r" is 5.14.0-503.14.1.el9_5.x86_64.

chokkareddy_1-1733821490711.png

 

chokkareddy_0-1733821315608.png

 

chokkareddy
Mission Specialist
Mission Specialist
  • 184 Views

Hello,

Below work around which i found helped me to solve the issue.

By adding the ports in the nft rules able to work with port 80.
and for accessing port 443 https.
If SELinux is enforcing and causing issues, you can create a permanent solution to allow Nginx access to the certificate files.
Below connamds are used to add ports in nft rules.
1. sudo nft add rule inet filter input tcp dport 80 accept
2. sudo nft add rule inet filter input tcp dport 443 accept

Below commands used to Permanently Set SELinux to Permissive Mode.
1. Edit the SELinux configuration file:
sudo vi /etc/selinux/config
2. Change the SELINUX=enforcing line to SELINUX=permissive to make it permissive after reboot.
3. Reboot the server to apply the change.

Join the discussion
You must log in to join this conversation.