Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Sorry guys, i admit, i am new to Linux, and can't get this to work for the life of me. My router is forwarding requests for ports 80 and 21 (for now) to my server. I have apache2 and proFTPD both running. And from other computers on the internal network i can connect to both of them, and they work just fine. However, any connections from an external IP address don't work. When running nmap to scan for open ports, i see 443 and 3306 (Mysql is installed and running) both open, but the rest as "filtered" which leads me to believe a firewall is intercepting the packets...
I have tried killing the firewall via the GUI, and have tried manually adding iptables -I INPUT 1 -p tcp --dport 80 -j ACCEPT (when the firewall is running), but neither leave the port open...
Some background: running Fedora Core2, using Gnome...
any suggestions?
sorry about that, when I have the firewall on, -nvL outputs the following:
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 RH-Firewall-1-INPUT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 RH-Firewall-1-INPUT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
Chain RH-Firewall-1-INPUT (2 references)
pkts bytes target prot opt in out source destination
0 0 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmp type 255
0 0 ACCEPT esp -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT ah -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
0 0 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited
Side note (this is my linux newbness kicking in): Is there a way to turn on/off the firewall easily?
Until now ive been going into the Fedora GUI and hitting "off" or "on"
And this is after a few min, a port scan, and an attemp to pull up the http from externally....
(and loading this page a few times):
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
3474 707K RH-Firewall-1-INPUT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
pkts bytes target prot opt in out source destination
0 0 RH-Firewall-1-INPUT all -- * * 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT 1926 packets, 246K bytes)
pkts bytes target prot opt in out source destination
Chain RH-Firewall-1-INPUT (2 references)
pkts bytes target prot opt in out source destination
20 1294 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT icmp -- * * 0.0.0.0/0 0.0.0.0/0 icmp type 255
0 0 ACCEPT esp -- * * 0.0.0.0/0 0.0.0.0/0
0 0 ACCEPT ah -- * * 0.0.0.0/0 0.0.0.0/0
2387 654K ACCEPT all -- * * 0.0.0.0/0 0.0.0.0/0 state RELATED,ESTABLISHED
1067 51629 REJECT all -- * * 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited
nope, no connection from externally after running the command "#service iptables stop"
port scan shows port 80 and 21 as "filtered" (nmap) (actually it shows NO ports, and justs says "the ports not listed are "filtered"")
that was what i thought the problem was originally, but I have it doing port forwarding, and have tried DMZ..
I've also called Belkin about it, and I can get it to port forward just fine to my main comp (WinXP).. So the guy at belkin said it wouldn't be a router problem (router should forward to any type of comp just fine... as all packets are the same)...
I believed him...
Make sense...
any other ideas?
ok
im going to go through what i did on this server, and you guys tell me if i missed something, or did something wrong someplace..
Installed Fedora Core 2 (No Firewall) No server components (Only server admin tools)
Installed Mysql using 4 RPMs (Server, Client, Libraries, Dynamic Libraries)
Installed Apache2 using --enable-so
Installed PHP4.3.7 using --with-apxs2=.................. and --with-mysql
Installed ProFTPd with no extra tags...
Config'd the .conf files to how i needed them (added PHP in the apache conf, and set up the proftpd one the way i wanted it)
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.