linux中某個端口拒絕遠端主機連接配接原因及解決方法
問題描述: 比如在本機telent到 192.168.8.170 主機的9000 端口,被拒絕。 [ [email protected] log]$ telnet 192.168.8.170 9000
Trying 192.168.8.170...
telnet: connect to address 192.168.8.170: Connection refused 原因:原因有兩個
- 一個是被防火牆攔截
- 或者該端口的監聽位址為本機(127.0.0.1),如果這樣的話,隻有從本機發起的對端口的通路被允許,而外部主機通路被拒絕。可以通過“netstat -anp | grep 9000”指令檢視該端口的監聽位址:
[[email protected] log]$ netstat -anp | grep 9000
(Not all processes could be identified, non-owned process info will not be shown, you would have to be root to see it all.) tcp 0 0 ::ffff:127.0.0.1:9000 :::* LISTEN 6614/java tcp 0 0 ::ffff:127.0.0.1:46722 ::ffff:127.0.0.1:9000 TIME_WAIT - tcp 0 0 ::ffff:127.0.0.1:46729 ::ffff:127.0.0.1:9000 TIME_WAIT - tcp 0 0 ::ffff:127.0.0.1:46723 ::ffff:127.0.0.1:9000 ESTABLISHED 6733/java tcp 0 0 ::ffff:127.0.0.1:46726 ::ffff:127.0.0.1:9000 TIME_WAIT - tcp 0 0 ::ffff:127.0.0.1:46730 ::ffff:127.0.0.1:9000 ESTABLISHED 6976/java tcp 0 0 ::ffff:127.0.0.1:9000 ::ffff:127.0.0.1:46730 ESTABLISHED 6614/java tcp 0 0 ::ffff:127.0.0.1:9000 ::ffff:127.0.0.1:46723 ESTABLISHED 6614/java
有上圖可知,9000端口監聽的位址為本地位址(127.0.0.1)
解決方法:
- 如果防火牆過濾了通路該端口的請求則設定過濾規則,放行該端口或者關閉防火牆
- 如果監聽位址為本機位址則修改其監聽位址為真是ip位址(如192.168.8.119)。
比如在hadoop中,可以更改本機位址(eg:localhost——>hadoop),然後在/etc/hosts配置檔案中加入主機hadoop和ip 192.168.8.119的映射關系,然後修改core-site.xml中fs.default.name的值為" hdfs://hadoop:9000"。