Daily Archives: November 3, 2006

How to open a port on Linux using iptables (Linux firewall is a PITA)

/sbin/iptables -L
[root@s-sakai-1 etc]# vi /etc/sysconfig/iptables
# Chuck ports
-A RH-Firewall-1-INPUT -m state –state NEW -m tcp -p tcp –dport 8090 -j ACCEPT
-A RH-Firewall-1-INPUT -m state –state NEW -m tcp -p tcp –dport 8092 -j ACCEPT
# Lancaster ports
root@s-sakai-1 etc]# /sbin/service iptables restart
Flushing firewall rules: [ OK ]
Setting chains to policy ACCEPT: filter [ OK ]
Unloading iptables modules: [ OK ]
Applying iptables firewall rules: [ OK ]
[root@s-sakai-1 etc]#
Grrr – I dislike fancy newfangled things – in BSD 4.3 – we did not have to do this!
——– Comments ——-
Too bad you don’t allow comments in your blog. :)
Anyway, I wanted to share an iptables tip – to restart it, it’s safer to use iptables-restore:
iptables-restore < /etc/sysconfig/iptables This will do a syntax check and only reload it if it's correct - useful when hand-editing. The other way could stop the firewall but not bring it back up if the syntax is off. Mike Osterman Whitman College

What Sakai Does when You run out of Memory

Sakai will not start up with the default JVM settings. You need the following:
[csev@s-sakai-1 ~]$ grep OPT .bash_profile
JAVA_OPTS=’-Xmx512m -Xms512m -XX:PermSize=16m -XX:MaxPermSize=128m -XX:NewSize=128m -XX:+UseConcMarkSweepGC -XX:+UseParNewGC’ ; export JAVA_OPTS
Here is the message you get when you forget this:
INFO: Deploying web application archive sakai-help-tool.war
java.lang.reflect.InvocationTargetException
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:585)
at org.apache.catalina.startup.Bootstrap.start(Bootstrap.java:294)
at org.apache.catalina.startup.Bootstrap.main(Bootstrap.java:432)
Caused by: java.lang.OutOfMemoryError: PermGen space
Exception in thread “QuartzScheduler_QuartzSchedulerThread” java.lang.OutOfMemoryError: PermGen space
Exception in thread “QuartzScheduler_QuartzScheduler-s-sakai-1.dmc.dc.umich.edu_MisfireHandler” java.lang.OutOfMemoryError: PermGen space