LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Newbie (http://www.linuxquestions.org/questions/linux-newbie-8/)
-   -   apache setup problem (http://www.linuxquestions.org/questions/linux-newbie-8/apache-setup-problem-315738/)

aw_wolfe 04-21-2005 12:12 PM

apache setup problem
 
I've seen several posts that seem similiar to my problem, however, I haven't found any with solutions. So here is the problem....

[Internet]->[Cable Modem dhcp client]->[Router dhcp server, port 80 forward to static IP]->[wlan0]->computer[apache- Fedora 3, configured on install to allow http through firewall]

Ok, internet works from webserver computer (out). I can hit the apache with internal ip (http://192.1681.2 with Mozilla), but doesn't work if use registered name (using no-ip.com service). I can also ping my machine using xxxx.no-ip.com (so I know that the registered mapping works). Using http://xxxx.no-ip.com causes a time out error in Mozilla (locally as well as from the outside).

Also, machine was windows server webserver that worked and I have not changed anything on the router, so don't think the problem is there. Right now assuming it is being blocked by the internal firewall on the server (just a guess), but not sure how to fix.

Thanks,

Tony

Ateo 04-21-2005 05:11 PM

Router's do not route packets out the same interface as it came in. A routers job is to pass packets from one network to another. In other words, destination network and source network must be different.

Ping is a different protocol. A router will always respond if the pinged IP is configured to one of it's ports AND that port is up.

How are you testing this from the internet?

aw_wolfe 04-21-2005 05:22 PM

friend is trying to hit it from outside.

ping was really just to ensure name->ip registration working, since it woulde be pinging cble modem/router, not webserver computer. but not sure why webserver isn't working with myname.com. Seems configured to allow any 80 in via httpd config with fedora.

[root@localhost src]# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere tcp dpt:http
LOG all -- anywhere anywhere LOG level warning prefix `INPUT_DROP: '

Chain FORWARD (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- anywhere anywhere

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain RH-Firewall-1-INPUT (2 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere
ACCEPT icmp -- anywhere anywhere icmp any
ACCEPT ipv6-crypt-- anywhere anywhere
ACCEPT ipv6-auth-- anywhere anywhere
ACCEPT udp -- anywhere 224.0.0.251 udp dpt:5353
ACCEPT udp -- anywhere anywhere udp dpt:ipp
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:http
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ftp
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:smtp
REJECT all -- anywhere anywhere reject-with icmp-host-prohibited

aw_wolfe 04-21-2005 06:27 PM

I've used the iptables command to manually insert input, output, forward. so now it gives the following (note that it still does not work.) This seems to be a fairly common problem, having a hard time believing it is so difficult to get a solution for (not finding any help via searching, but finding other postings with similar problem)

iptables -L

Chain INPUT (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere tcp dpt:http
LOG all -- anywhere anywhere LOG level warning prefix `INPUT_DROP: '
ACCEPT tcp -- anywhere 192.168.1.2 tcp dpt:http

Chain FORWARD (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- anywhere anywhere
ACCEPT tcp -- anywhere 192.168.1.2 tcp dpt:http

Chain OUTPUT (policy ACCEPT)
target prot opt source destination
ACCEPT tcp -- anywhere 192.168.1.2 tcp dpt:http

Chain RH-Firewall-1-INPUT (2 references)
target prot opt source destination
ACCEPT all -- anywhere anywhere
ACCEPT icmp -- anywhere anywhere icmp any
ACCEPT ipv6-crypt-- anywhere anywhere
ACCEPT ipv6-auth-- anywhere anywhere
ACCEPT udp -- anywhere 224.0.0.251 udp dpt:5353
ACCEPT udp -- anywhere anywhere udp dpt:ipp
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:http
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ftp
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:smtp
REJECT all -- anywhere anywhere reject-with icmp-host-prohibited


All times are GMT -5. The time now is 03:31 AM.