Hi all,
I'm playing with a fresh 2.840 ACC installation and trying to join an ASG 8.200 without success.
This is what I see on the ASG:
ACC Healt
[1] ACC SSL-connect: 'IO::Socket::INET configuration failederror:00000000:lib(0):func(0):reason(0)'.
On the ACC I see these packets dropped:
2011:07:29-12:59:48 ACC_BETA ulogd[5822]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60001" initf="eth0" srcmac="0:1a:8c:f0:65:81" dstmac="0:c:29:59:9c:91" srcip="a.b.c.d" dstip="e.f.g.h" proto="6" length="60" tos="0x0c" prec="0x40" ttl="51" srcport="56698" dstport="4433" tcpflags="SYN"
but the ACC is listening for the ASG connections:
ACC_BETA:/root # netstat -nap|grep 4433
tcp 0 0 0.0.0.0:4433 0.0.0.0:* LISTEN 6567/accd
So my question is: Do I have to configure any kind of rule to permit the registration of the ASG?
I'm using ACC since the very first version but I don't remember the need to configure packet filter rules..
Moreover, on my production ACC v2 I can find:
ACC:/root # iptables -v -nL|grep 4433
435 31611 CONFIRMED tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp spts:1:65535 dpt:4433 CONFIRMED
on the AUTO_INPUT chain but this rule is not present on the ACC 2.840
Is there some kind of configuration I'm missing?
