nginx suddenly can’t proxy to non-standard ports – Boolean SeLinux

Written by James McDonald

May 12, 2016

I did an upgrade recently and suddenly nginx wasn’t forwarding requests to remote hosts on non-standard ports…. this was on a CentOS host which had seLinux enabled.

Turn seLinux off temporarily

setenforce 0

Does nginx now work proxying to non-standard ports?

Turn it back on

setenforce 1

Does nginx now fail to proxy to non-standard ports?

If so you probably have a problem with seLinux denying access to nginx to forward requests to a non-standard port….

Get all your seLinux booleans

getsebool -a

If you need to create an seLinux policy to allow nginx to do what it does to non-standard ports… Then…. checkout my posting on audit2allow


Submit a Comment

Your email address will not be published. Required fields are marked *

You May Also Like…

Scam call from “Telstra”

Just had a call from a man with a sub-continental accent from caller ID 0734946596 Told me there was problem with my...

PC Build

I recently built myself a PC using the SilverStone SG13 Case. I am planning to use it as a Hot Spare. So any client...