VMware Cloud Community
virtual_univers
Contributor
Contributor
‎03-31-2008 10:32 AM

How to allow all the network traffic to/from a certain host

I have installed ESX v3.5 server and now I'm installing a monitoring tool (Tivoli EndPoint) on Service Console. My question is how to enable all the traffic between ESX server and Tivoli Server? I have tried with iptables, it seems doesn't work.

Thanks.

0 Kudos
2 Replies
Dave_Mishchenko
Immortal
Immortal
‎03-31-2008 10:41 AM

While it's not recommended for production, you can turn off the ESX service console firewall with

esxcfg-firewall --allowIncoming

esxcfg-firewall --allowOutgoing

You can then turn it back on with

esxcfg-firewall --blockIncoming

esxcfg-firewall --blockOutgoing

If you know the ports you need open, it would be best to just open those

esxcfg-firewall --openPort <port,tcp|udp,in|out,name>

0 Kudos
virtual_univers
Contributor
Contributor
‎03-31-2008 10:54 AM

Thanks!

But I do NOT want open all the incoming/outgoing ports - instead I only need it for from/to a certain host (Tivoli monitoring server). My Tivoli support told me that the port used is dynanmicly generated (not using a fix port). So I have to open all the ports between ESX and Tivoli server.

0 Kudos