LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 10-12-2016, 05:27 PM   #46
Jjanel
Member
 
Registered: Jun 2016
Distribution: any&all, in VBox; Ol'UnixCLI; NO GUI resources
Posts: 999
Blog Entries: 12

Rep: Reputation: 361Reputation: 361Reputation: 361Reputation: 361

Wow, you stayed up all night, working on this! A 'true' IT admin

A [great?] idea has come to me: 'ask' cestos 'how' your ssh is IP-CONNECTing, by simply:

netstat -nt | grep :22

I'm 'betting' it may say ..122.1
IF so, on win, *try* browsing that address!

Did you 'study'*win host*'s [dos=run cmd] `netstat -rn` ??
Did we ever get to see any of the web or ssh traffic in tcpdump?
Did you find anything in the logs? a 'fav' cmd: ls -latr ("later" but e is an invalid switch) /var/log
ls -latr /var/log
 
1 members found this post helpful.
Old 10-12-2016, 05:30 PM   #47
c0wb0y
Member
 
Registered: Jan 2012
Location: Inside the oven
Distribution: Windows
Posts: 417

Rep: Reputation: 74
It depends on your primary purpose. If you just want to learn and experimentation and you think that firewall/selinux is getting in the way, you can leave it off for now.

In saying that, learning networking, firewall (and bit of SELinux, maybe) is a must. So it depends what's your immediate goal.
 
1 members found this post helpful.
Old 10-12-2016, 05:32 PM   #48
Fardad74
Member
 
Registered: Jan 2016
Posts: 50

Original Poster
Blog Entries: 1

Rep: Reputation: Disabled
Lightbulb

Quote:
Originally Posted by Habitual View Post
Disabling SELinux is safe?
I just typed SELinux's "setenforce 1" immediately, i meant about iptables for these experiments that i'm trying . my SELinux actually is running all the time.

Last edited by Fardad74; 10-12-2016 at 05:33 PM.
 
Old 10-12-2016, 05:34 PM   #49
Jjanel
Member
 
Registered: Jun 2016
Distribution: any&all, in VBox; Ol'UnixCLI; NO GUI resources
Posts: 999
Blog Entries: 12

Rep: Reputation: 361Reputation: 361Reputation: 361Reputation: 361
Ooops, 'ninja'ed again, from my sloww [&still terrible] writing ability...

Still, I'd like to see the netstat -nt, to see where it thinks ssh is coming from
(I'm un-betting, back to .2.2; so I guess .122. virbr0 is irrelevant here; [what's it for/do?])
Also, what is 'up' with .2.2 [gw] vs. why you think win is .2.1?
(the netstat -rn *on win*!) Or win> ipconfig/all

Last edited by Jjanel; 10-12-2016 at 05:41 PM.
 
1 members found this post helpful.
Old 10-12-2016, 05:38 PM   #50
Fardad74
Member
 
Registered: Jan 2016
Posts: 50

Original Poster
Blog Entries: 1

Rep: Reputation: Disabled
Quote:
Originally Posted by Jjanel View Post
Wow, you stayed up all night, working on this! A 'true' IT admin

A [great?] idea has come to me: 'ask' cestos 'how' your ssh is IP-CONNECTing, by simply:

netstat -nt | grep :22

I'm 'betting' it may say ..122.1
IF so, on win, *try* browsing that address!

Did you 'study'*win host*'s [dos=run cmd] `netstat -rn` ??
Did we ever get to see any of the web or ssh traffic in tcpdump?
Did you find anything in the logs? a 'fav' cmd: ls -latr ("later" but e is an invalid switch) /var/log
ls -latr /var/log
tcp6 0 0 :::80 :::* LISTEN 6746/httpd
tcp6 0 0 :::22 :::* LISTEN 1770/sshd
 
Old 10-12-2016, 05:39 PM   #51
Fardad74
Member
 
Registered: Jan 2016
Posts: 50

Original Poster
Blog Entries: 1

Rep: Reputation: Disabled
Quote:
Originally Posted by Jjanel View Post
Ooops, 'ninja'ed again, from my sloww [&still terrible] writing ability...

Still, I'd like to see the netstat -nt, to see where it thinks ssh is coming from
(I'm un-betting, back to .2.2; so I guess .122. vbrg0 is irrelevant here; [what's it for/do?])
eno16777736 is my current net interface

Last edited by Fardad74; 10-12-2016 at 05:43 PM.
 
Old 10-12-2016, 05:42 PM   #52
Fardad74
Member
 
Registered: Jan 2016
Posts: 50

Original Poster
Blog Entries: 1

Rep: Reputation: Disabled
Quote:
Originally Posted by Jjanel View Post
Ooops, 'ninja'ed again, from my sloww [&still terrible] writing ability...

Still, I'd like to see the netstat -nt, to see where it thinks ssh is coming from
(I'm un-betting, back to .2.2; so I guess .122. virbr0 is irrelevant here; [what's it for/do?])
Also, what is 'up' with .2.2 [gw] vs. why you think win is .2.1?
(the netstat -rn *on win*!) Or win> ipconfig/all
[root@localhost logs]# netstat -nt
Active Internet connections (w/o servers)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 0 0 192.168.2.128:22 192.168.2.1:3250 ESTABLISHED
tcp 1 0 192.168.2.128:44877 192.168.2.128:80 CLOSE_WAIT
 
Old 10-12-2016, 05:43 PM   #53
c0wb0y
Member
 
Registered: Jan 2012
Location: Inside the oven
Distribution: Windows
Posts: 417

Rep: Reputation: 74
That's why I was asking for output of iptables -nvL and was about to give up when none was received. Perhaps, specific traffic such as icmp/http explicitly blocked? I don't know as no ouput was supplied.

The gateway at 2.2 has no relevance in this instance as the 2 nodes (on the same subnet) who tried to communicate with each other do not require IP routing.
 
1 members found this post helpful.
Old 10-12-2016, 05:45 PM   #54
Jjanel
Member
 
Registered: Jun 2016
Distribution: any&all, in VBox; Ol'UnixCLI; NO GUI resources
Posts: 999
Blog Entries: 12

Rep: Reputation: 361Reputation: 361Reputation: 361Reputation: 361
I think that's [netstat] -ln, Listen, not -t, TCP *CONNECTions*...
netstat -nt

Thanks for you patience! I'm learning a lot too!

(and 'who' [ipconfig/all] *win* 'think it is' [IPaddresses on its various interfaces] ??)

p.s. when I saw: "my centos hadn't any iptables installed",
I skipped the whole firewall issue, since I barely today discovered:
iptables -L (to see if ?any? firewall is 'running')

Last edited by Jjanel; 10-12-2016 at 05:51 PM.
 
1 members found this post helpful.
Old 10-12-2016, 05:46 PM   #55
Jjanel
Member
 
Registered: Jun 2016
Distribution: any&all, in VBox; Ol'UnixCLI; NO GUI resources
Posts: 999
Blog Entries: 12

Rep: Reputation: 361Reputation: 361Reputation: 361Reputation: 361
oh, ok on the netstat 2.128 :22

... but still looking for (to complete my understanding/learning):
(and 'who' [ipconfig/all] *win* 'thinks it is' [IPaddresses on its various interfaces] ??)

Last edited by Jjanel; 10-12-2016 at 05:54 PM.
 
1 members found this post helpful.
Old 10-12-2016, 05:49 PM   #56
Fardad74
Member
 
Registered: Jan 2016
Posts: 50

Original Poster
Blog Entries: 1

Rep: Reputation: Disabled
Quote:
Originally Posted by Jjanel View Post
Wow, you stayed up all night, working on this! A 'true' IT admin

A [great?] idea has come to me: 'ask' cestos 'how' your ssh is IP-CONNECTing, by simply:

netstat -nt | grep :22

I'm 'betting' it may say ..122.1
IF so, on win, *try* browsing that address!

Did you 'study'*win host*'s [dos=run cmd] `netstat -rn` ??
Did we ever get to see any of the web or ssh traffic in tcpdump?
Did you find anything in the logs? a 'fav' cmd: ls -latr ("later" but e is an invalid switch) /var/log
ls -latr /var/log
maybe some others laugh or ridiciuling me but after 2 days finally i saw the first web page that i created as sample in my life (a very basic work in servering).
currently i can sleep...

Last edited by Fardad74; 10-12-2016 at 05:57 PM.
 
Old 10-12-2016, 05:54 PM   #57
Fardad74
Member
 
Registered: Jan 2016
Posts: 50

Original Poster
Blog Entries: 1

Rep: Reputation: Disabled
Quote:
Originally Posted by Jjanel View Post
I think that's [netstat] -ln, Listen, not -t, TCP *CONNECTions*...
netstat -nt

Thanks for you patience! I'm learning a lot too!

(and 'who' [ipconfig/all] *win* 'think it is' [IPaddresses on its various interfaces] ??)
one interesting thing was that i had the ping of vmnet1 the upper right interface in the picture that is in another subnet 192.168.206.x/24. i think because it is wired.
Attached Thumbnails
Click image for larger version

Name:	Screenshot (13).png
Views:	20
Size:	115.7 KB
ID:	23234  
 
Old 10-12-2016, 05:59 PM   #58
Jjanel
Member
 
Registered: Jun 2016
Distribution: any&all, in VBox; Ol'UnixCLI; NO GUI resources
Posts: 999
Blog Entries: 12

Rep: Reputation: 361Reputation: 361Reputation: 361Reputation: 361
Oh, I see the .2.1 Hmmmm, I wonder why guest has .2.2[?] Vmware 'magic', I guess...

Can you get a 'dos terminal [run cmd]' on your winX? (it's VERY useful to know how...)
& do the:
netstat -rn (&post screen shot; THEN you can get sleep
 
Old 10-12-2016, 06:08 PM   #59
Fardad74
Member
 
Registered: Jan 2016
Posts: 50

Original Poster
Blog Entries: 1

Rep: Reputation: Disabled
Quote:
Originally Posted by Jjanel View Post
Oh, I see the .2.1 Hmmmm, I wonder why guest has .2.2[?] Vmware 'magic', I guess...

Can you get a 'dos terminal [run cmd]' on your winX? (it's VERY useful to know how...)
& do the:
netstat -rn (&post screen shot; THEN you can get sleep
yes , i wondered,too before i disable firewalls gateway became 2.2!!! while it should be 2.255
Attached Thumbnails
Click image for larger version

Name:	Screenshot (16).png
Views:	23
Size:	107.6 KB
ID:	23235  

Last edited by Fardad74; 10-12-2016 at 06:09 PM.
 
Old 10-12-2016, 06:40 PM   #60
Jjanel
Member
 
Registered: Jun 2016
Distribution: any&all, in VBox; Ol'UnixCLI; NO GUI resources
Posts: 999
Blog Entries: 12

Rep: Reputation: 361Reputation: 361Reputation: 361Reputation: 361
I'd like to re-create this (to learn)

Thanks!! Good night

.255 is a "broadcast" (like .0)
.1.x must be your ISP/internet connection [sub]net.
I see .2.1 but .2.2 must be some vmware 'magic', that ?logically replaces [on guest]?
what 'we' think should be .2.1 (thus ping .2.2, not .2.1, works=is-required). Idk...

I had an idea, for my learning: IF you could give me the exact cmds to recreate this problem (at LinuxZoo.org; I don't have 'resources' myself)
Attached Files
File Type: txt fw.txt (16.2 KB, 20 views)

Last edited by Jjanel; 10-12-2016 at 10:45 PM.
 
1 members found this post helpful.
  


Reply

Tags
apache, httpd server, server


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Virtual server only brings up default Apache page \/4A Linux - Server 2 12-29-2014 03:02 AM
web page on apache server query a MS Access database chackercon Programming 2 01-19-2010 10:22 AM
apache web server default page link tuxrules Linux - Newbie 9 07-10-2004 05:22 PM
I cant change the default test page in apache server to add my page.y nhemapriya Linux - Newbie 3 05-13-2004 12:35 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 11:14 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration