Skip to content
  • There are no suggestions because the search field is empty.

How to disable iptables in RSA NetWitness Platform on v11.3.x

Issue

iptables automatically started after few days even though customer disabled iptables with the following command.

systemctl disable iptables
systemctl disable ip6tables

Resolution

Customer can disable iptables with the following steps.
  1. vi /var/netwitness/config-management/cookbooks/nw-firewall/recipes/default.rb
      comment out the line in this file, save and quit
  2. systemctl stop iptables
  3. systemctl stop ip6tables
  4. systemctl disable ip6tables
  5. systemctl disable iptables
  6. orchestration-cli-client --update-admin-node

NOTE: Disable iptables might be a major security hole, and it is not a good idea. Perform this step only if the customer wants to disable under they know that we don't recommend.

Notes

You must perform these steps when you upgrade to next version because it would be re-enabled after every upgrade.


Product Details

RSA Product Set: NetWitness Platform
RSA Product/Service Type: Platform
RSA Version/Condition:11.3.x

Approval Reviewer Queue

RSA NetWitness Suite Approval Queue