Previous Topic: Disable IPv6 Networking on Linux ServersNext Topic: Installing the Software

Preparing Linux Servers for the UpgradeDisable the iptables Firewall for Linux Servers

Disable the iptables Firewall for Linux Servers

We recommend that you disable the iptables firewall and stop the iptables service on each Linux server that has a Harvester installed. Disabling iptables ensures that all the required ports are open and that the iptables firewall does not impact performance adversely.

Note: If your enterprise requires the use of iptables, make sure that you open all of the applicable firewall ports in the Firewall Requirements list. In addition make sure that you have full localhost to localhost access. This step is required because CA Network Flow Analysis uses RMI (Remote Method Invocation) access.

Complete the following steps to disable all levels of iptables and allow communication among CA Network Flow Analysis components.

Follow these steps:

  1. Log in as root or with a sudo user account.
  2. Run the following commands in a command prompt window: 
    service iptables stop

    chkconfig iptables off

    chkconfig --list |grep iptables
  3. Review the output of the last command to make sure that all of the iptables levels are off, as shown in the following example: 
    iptables 0:off 1:off 2:off 3:off 4:off 5:off 6:off