Sorry guys, i admit, i am new to Linux, and can't get this to work for the life of me. My router is forwarding requests for ports 80 and 21 (for now) to my server. I have apache2 and proFTPD both running. And from other computers on the internal network i can connect to both of them, and they work just fine. However, any connections from an external IP address don't work. When running nmap to scan for open ports, i see 443 and 3306 (Mysql is installed and running) both open, but the rest as "filtered" which leads me to believe a firewall is intercepting the packets...

I have tried killing the firewall via the GUI, and have tried manually adding iptables -I INPUT 1 -p tcp --dport 80 -j ACCEPT (when the firewall is running), but neither leave the port open...

Some background: running Fedora Core2, using Gnome...
any suggestions?

Can you please post the output of

#iptables -nvL // I seem addicted to this command ... I seem to type this on each post that I respond to

sorry about that, when I have the firewall on, -nvL outputs the following:

Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 RH-Firewall-1-INPUT all -- * * 0.0.0.0/0 0.0.0.0/0

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 RH-Firewall-1-INPUT all -- * * 0.0.0.0/0 0.0.0.0/0

Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination

Chain RH-Firewall-1-INPUT (2 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmp type 255
0 0 ACCEPT esp -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT ah -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited


Side note (this is my linux newbness kicking in): Is there a way to turn on/off the firewall easily?
Until now ive been going into the Fedora GUI and hitting "off" or "on"

And this is after a few min, a port scan, and an attemp to pull up the http from externally....
(and loading this page a few times):
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
3474 707K RH-Firewall-1-INPUT all -- * * 0.0.0.0/0 0.0.0.0/0

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 RH-Firewall-1-INPUT all -- * * 0.0.0.0/0 0.0.0.0/0

Chain OUTPUT (policy ACCEPT 1926 packets, 246K bytes)
pkts bytes target prot opt in out source destination

Chain RH-Firewall-1-INPUT (2 references)
pkts bytes target prot opt in out source destination
20 1294 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmp type 255
0 0 ACCEPT esp -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT ah -- * * 0.0.0.0/0 0.0.0.0/0
2387 654K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
1067 51629 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited

To turn off iptables,

#service iptables stop.

figured it was something simple =P
any answer to my original question anyone?

After turning off iptables, are you able to connect to your webserver from an external address?

nope, no connection from externally after running the command "#service iptables stop"
port scan shows port 80 and 21 as "filtered" (nmap) (actually it shows NO ports, and justs says "the ports not listed are "filtered"")

does your router do any kind of filtering

that was what i thought the problem was originally, but I have it doing port forwarding, and have tried DMZ..
I've also called Belkin about it, and I can get it to port forward just fine to my main comp (WinXP).. So the guy at belkin said it wouldn't be a router problem (router should forward to any type of comp just fine... as all packets are the same)...
I believed him...
Make sense...
any other ideas?

Where does the gateway on your linux box point to?

#route -nv

or

#netstat -nr

nothing... with iptables off and on, neither of those commands produce anything....
this good or bad?

ok
im going to go through what i did on this server, and you guys tell me if i missed something, or did something wrong someplace..
Installed Fedora Core 2 (No Firewall) No server components (Only server admin tools)
Installed Mysql using 4 RPMs (Server, Client, Libraries, Dynamic Libraries)
Installed Apache2 using --enable-so
Installed PHP4.3.7 using --with-apxs2=.................. and --with-mysql
Installed ProFTPd with no extra tags...
Config'd the .conf files to how i needed them (added PHP in the apache conf, and set up the proftpd one the way i wanted it)

And now im here...

any ideas anyone?

please post the output of

#netstat -nr

and

#/sbin/ifconfig -a


Perhaps your default gateway is not set.