Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
10-31-2005, 04:15 PM
|
#1
|
Member
Registered: Jun 2003
Distribution: RH 8.2, SuSE 9.0
Posts: 135
Rep:
|
Accessing apache from outside through ADSL
I have a small network which includes a Belkin router and an Apache2 web server. The router access the internet through Thompson Speedtouch 510 ADSL (pppoe1) modem.
Browsing the internet and sending/fetching mail works fine. I can access the Apache internally by typing the server IP in the browser on any other PC in the internal network. I have enabled port forwarding (port 80) in both router and modem.
But I cannot access the Apache from outside. I get the IP for the ADSL by DHCP, but typing this IP gives nothing at all, it says "connecting to <IP address> and finally just times out. I have tried disabling the firewall in the router. On the router I also tried to put the Apache server in the DMZ.
Any help greatly apreciated.
|
|
|
10-31-2005, 04:41 PM
|
#2
|
LQ Guru
Registered: Apr 2003
Location: ~
Distribution: Ubuntu, FreeBSD, Solaris, DSL
Posts: 5,337
Rep:
|
Maybe apache is listening in a different port? Try searching your apache.config files. This varies badly from one distro to another and apache version. On my Ubuntu, for example, I have the following files:
/etc/apache2/apache.conf
/etc/apache2/httpd.conf
/etc/apache2/ports.conf
Once you find which file has the default port for listening, check if it matches with the port you gave forward on your router. The line should look like this:
Listen 80
Some distros defaults to port 8080, and I believe that's you case (wild guess).
Good luck!
|
|
|
10-31-2005, 04:52 PM
|
#3
|
Member
Registered: Jun 2003
Distribution: RH 8.2, SuSE 9.0
Posts: 135
Original Poster
Rep:
|
Thanks for your reply. My distro (suse 9.2) uses Listen 80, which I haven't changed.
|
|
|
10-31-2005, 05:40 PM
|
#4
|
LQ Veteran
Registered: Feb 2003
Location: Maryland
Distribution: Slackware
Posts: 7,803
|
It is possible that your ISP blocks port 80. You could either ask them if they do or you could set up Apache to listen on an odd port number, reset your router and modem, and if that works, then your ISP blocks port 80.
|
|
|
10-31-2005, 08:03 PM
|
#5
|
Member
Registered: Oct 2003
Distribution: Fedora core 4
Posts: 113
Rep:
|
Re: Accessing apache from outside through ADSL
Quote:
Originally posted by Recirqie
But I cannot access the Apache from outside. I get the IP for the ADSL by DHCP, but typing this IP gives nothing at all, it says "connecting to <IP address> and finally just times out. I have tried disabling the firewall in the router. On the router I also tried to put the Apache server in the DMZ.
|
huh?
May you explain more carefully how you find your ip?
And perhaps you could tell us what isp you use, someone might know if they block port 80.
|
|
|
11-01-2005, 09:41 AM
|
#6
|
Member
Registered: Jun 2003
Distribution: RH 8.2, SuSE 9.0
Posts: 135
Original Poster
Rep:
|
Hangdog42: I'll try that, although they said that they do not block it. They may do even so ....
apepost: I find the IP through www.ipadresse.no, and it tallies with what the service page of my isp (Telenor online) gives.
|
|
|
11-01-2005, 10:11 AM
|
#7
|
Member
Registered: Mar 2005
Location: Norway, by the coast
Distribution: Debian and the likes
Posts: 190
Rep:
|
Hi
Cruised by and wanted to share a little link :
http://www.canyouseeme.org/
Nice way to check if they block you Og forresten : Telenor e vel ikkje akkurat kjent for fleksibilitet
|
|
|
11-01-2005, 12:00 PM
|
#8
|
Member
Registered: Oct 2003
Distribution: Fedora core 4
Posts: 113
Rep:
|
OK. Telenor doesn't block port 80. At least not for me.
Perhaps you have configured apache not to allow connections from the Internet?
The Thompson Speedtouch 510 is capable of working as a router, why do you have two? Are you sure the Thompson isn't in router mode? In which case you would need to forward the port there too. (Or just remove your second router)
|
|
|
11-01-2005, 04:50 PM
|
#9
|
Member
Registered: Jun 2003
Distribution: RH 8.2, SuSE 9.0
Posts: 135
Original Poster
Rep:
|
Telenor doesn't block me, so far so good. The Speedtouch is set up for forwarding port 80 (switching it off makes canyouseeme think the ISP has blocked me). The Belkin is a wireless router, only the apache HW and proxy server are connected by patch cables.
The apache is pretty much default setup, so I would be surprised if it would deny access from internet? But if so, what would the variable name be?
|
|
|
11-01-2005, 06:54 PM
|
#10
|
Member
Registered: Jun 2003
Distribution: RH 8.2, SuSE 9.0
Posts: 135
Original Poster
Rep:
|
I have now tried to connect the server directly to the Speedtouch. It is still not seen, and canyouseeme reported the port as blocked. To add to the confusion, the speedtouch wouldn't accept the temporary address of the server in NAPT. Is there anywhere else in the server that external requests may be blocked? The firewall on the server is disabled.
|
|
|
11-02-2005, 10:30 AM
|
#11
|
Member
Registered: Oct 2003
Distribution: Fedora core 4
Posts: 113
Rep:
|
You really shouldn't do dual nat. The speedtouch should be connected directly into the local network together with your computers instead of into the wan port of the wireless router.
I will thereafter recommend you to upgrade the speedtouch to the newest firmware , as it offers vast performance, configuration simplicity, and functionality improvements.
If it still doesn't work you would have to post your apache configuration file, and perhaps the relevant parts of your speedtouch configuration. I have an almost identical setup, and it works for me, so I am sure its possible.
|
|
|
11-02-2005, 01:49 PM
|
#12
|
Member
Registered: Jun 2003
Distribution: RH 8.2, SuSE 9.0
Posts: 135
Original Poster
Rep:
|
I intended to place the Apache in DMZ outside the Belkin but obviosly inside the Speedtouch. Do you still recommend changing the network as described in you post?
Now canyouseeme finds the IP of the web server, but still sees the port as blocked, is it reasonable to assume that the server is the culprit?
|
|
|
11-02-2005, 05:40 PM
|
#13
|
Member
Registered: Jun 2003
Distribution: RH 8.2, SuSE 9.0
Posts: 135
Original Poster
Rep:
|
Now I'm really confused. When I run canyouseeme with the proxy set in the browser it sees the internal IP of the PC (or server as trhe case may be), but with the browser accessing the Belkin router directly canyouseeme sees the external IP. The proxy is a squid on a separate machine.
Port 80 on the squid is not in use I suppose, so that is really what canyouseeme reports on. That leaves me to believe that when port 80 is reported as OK for the external IP then the speedtouch will accept port 80? But does it apply to the Belkin as well?
Putting a client in DMZ didn't change anything.
|
|
|
All times are GMT -5. The time now is 08:59 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|