CODEWITHSUNDEEP
google-compute-engine
Romin
Romin

Reputation: 8806

CentOS Firewall Issues on GCE

I am trying out a "Hello World" exercise for GCE. First, I went with CentOS Image, added the instance, installed Apache, added the Firewall. All looks good as far as configuration is concerned. When I try to access the web page from outside, it cannot reach the page.

The Local Apache Server is running, from the local instance I can do a curl and all is well.

On the other hand, if I try out the same exact steps with the Debian distribution, everything works smoothly.

I saw another post that mentioned about additional firewall settings but I have not tried that out and I am not sure why it should be done either.

Can anyone explain if the CentOS setup does need additional Firewall settings and what those are?

Upvotes: 1

Views: 1072

Answers (2)

Carlos Rojas
Carlos Rojas

Reputation: 5897

You need free the ports in the cloud console.

Watch this video that explain the proccess.

Google Compute Engine Test Drive

Upvotes: 0

Brian Dorsey
Brian Dorsey

Reputation: 4688

CentOS defaults to a restrictive operating system level firewall (using iptables), while debian defaults to a permissive one. You can relax the firewall rules on CentOS as well. When running on Compute Engine, the service level firewall will only allow connections from the internet via configured ports.

To relax the CentOS firewall:

$ sudo iptables -D  INPUT -j REJECT --reject-with icmp-host-prohibited

Then test that your connections work as expected. To save this configuration across system reboots: 

$ /sbin/service iptables save

See the IPTables HowTo on the CentOS wiki for more information about working with iptables on CentOS.

Upvotes: 2

Related Questions