Configure the Firewall

This applies to: Visual Data Discovery

After you have successfully installed the Symphony components onto your server, you need to configure the firewall. Configure "iptables" to accept port 8443 and to forward incoming HTTPS requests on port 443 to the Symphony server port 8443. Note that the command lines may differ slightly depending on the Linux environment. Select the appropriate Linux environment below.

• CentOS 7 Commands
• Ubuntu 18, 20, or 22 Commands
• CentOS 7 Commands

These commands set up the firewall rules to the default eth0 network interface. If you want to apply them to another network interface, replace it in the commands below. If you want to apply the rules to all the interfaces, remove '-i eth0' from the command line.

CentOS 7 Commands

sudo yum install iptables-services
sudo systemctl enable iptables
sudo systemctl start iptables
sudo iptables -I INPUT 1 -i eth0 -p tcp --dport 8443 -j ACCEPT
sudo iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 443 -j DNAT --to-destination :8443
sudo iptables -I INPUT 1 -i eth0 -p tcp --dport 80 -j ACCEPT
sudo iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j DNAT --to-destination :8080
sudo /usr/libexec/iptables/iptables.init save

Ubuntu 18, 20, or 22 Commands

sudo apt-get install iptables-persistent
sudo iptables -I INPUT 1 -i eth0 -p tcp --dport 8443 -j ACCEPT
sudo iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 443 -j DNAT --to-destination :8443
sudo iptables -I INPUT 1 -i eth0 -p tcp --dport 80 -j ACCEPT
sudo iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j DNAT --to-destination :8080
sudo netfilter-persistent save
sudo netfilter-persistent reload

When prompted for input for the question of iptables-persistent, enter yes.

Windows Defender Firewall

See this best practices article: Best practices for configuring Windows Defender - Windows Security.