000030612 - How to resolve "CentOS CentOS repos files exist!" or "There is no firewall entry for NTP at dport 123" errors that may appear in the Security Analytics preUpgrade.log during a 10.5 upgrade

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000030612
Applies ToRSA Product Set: Security Analytics
RSA Product/Service Type: All Appliance Types
RSA Version/Condition: 10.5.0.0
Platform: CentOS
 
IssueThis article describes how to rectify the following two errors that may be seen in the Security Analytics 10.5.0.0 preUpgrade.log file:
  • CentOS CentOS repos files exist!
  • There is no firewall entry for NTP at dport 123
ResolutionTo resolve each issue, follow the appropriate steps listed below under the error message:
For the error "There is no firewall entry for NTP at dport 123", perform these 3 steps on all appliances to rectify the error:
  1. Back up the existing firewall file.
    iptables-save > /root/backup.fw

  2. Enter the following command to add the correct firewall rule for iptables.
    iptables -I INPUT -p udp -m udp --dport 123 -j ACCEPT

  3. Save the changes to the firewall.
    service iptables save

For the error "CentOS CentOS repos files exist!", perform these 2 steps on the appliance:
  1. Create a directory to house the CentOS repositories. (In this example, /root/backup is used.)
    mkdir /root/backup

  2. Move the CentOS repositories into the folder that was created.
    mv /etc/yum.repos.d/Cent* /root/backup

If you are unsure of any of the steps above or experience any issues, contact RSA Support and quote this article number for further assistance.

Attachments

    Outcomes