server is operating in server only mode
previously had openvpn bridge and routed installed, but following problems (posted in contribs) they were both uninstalled.
rpm -q e-smith-packetfilter
error: Failed dependencies:
e-smith-packetfilter >= 1.13.0.13 is needed by (installed) e-smith-portforwarding-2.6.0-3.el7.sme.noarch
iptables o/p:
-P INPUT DROP
-P FORWARD DROP
-P OUTPUT ACCEPT
-N ForwardedTCP
-N ForwardedTCP_2236
-N ForwardedUDP
-N ForwardedUDP_2236
-N InboundICMP
-N InboundICMP_2236
-N InboundTCP
-N InboundTCP_2236
-N InboundUDP
-N InboundUDP_2236
-N SMTPProxy
-N SSH_Autoblock
-N SSH_Whitelist
-N SSH_Whitelist_2236
-N denylog
-N local_chk
-N local_chk_2236
-N state_chk
-A INPUT -j state_chk
-A INPUT -j local_chk
-A INPUT -s 224.0.0.0/4 -j denylog
-A INPUT -d 224.0.0.0/4 -j denylog
-A INPUT -p icmp -j InboundICMP
-A INPUT -p icmp -j denylog
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -j InboundTCP
-A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,ACK SYN -j denylog
-A INPUT -i br0 -p udp -j InboundUDP
-A INPUT -i br0 -p udp -j denylog
-A INPUT -j denylog
dmesg:
[ 61.535056] bridge: filtering via arp/ip/ip6tables is no longer available by default. Update your scripts to load br_netfilter if you need this.
[ 61.536867] Bridge firewalling registered
[ 61.558224] tun: Universal TUN/TAP device driver, 1.6
[ 61.558227] tun: (C) 1999-2004 Max Krasnyansky <maxk@qualcomm.com>
[ 61.560137] IPv6: ADDRCONF(NETDEV_UP): tap0: link is not ready
[ 61.560143] device tap0 entered promiscuous mode
[ 61.560851] br0: port 1(tap0) entered blocking state
[ 61.560853] br0: port 1(tap0) entered disabled state
[ 62.605388] IPv6: ADDRCONF(NETDEV_UP): br0: link is not ready
As a test I disabled the ethernet adapter in the bios and then enabled the second adapter, the link light then come on but the output form iptables is the same, it seems that ethernet adapter isn't even activated, preusmably the os thinks it doesn't need it?
I checked /etc/sysconfig/network-scripts/enp0s25
It has the setting ONBOOT=no
Any ideas as to how I rectify this, I'm not at all conversant with the templates or db config so any pointers as to what to look for (if that is the issue) would be very welcome