Re: linux security/network issue....

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Sat, 2003-01-18 at 12:57, Bruce Douglas wrote:
> 	+----------------+
> 	| External World |
> 	+----------------+
> 	         ^
> 	         |(12.222.33.11)
> 	         v
> 	+-----------------+
> 	| Firewall/Router | (198.222.33.1)
> 	|    (Linksys)    |<--------------+
> 	+-----------------+               |
>                                         | (Internal Network)
>                                         |
>                                         v
>                 +------------------------------------------+
>                 |                                          |
>                 |                                          |
>                 v                                          v
>            +--------------+                       +---------------+
>            |              |                       |               |
>            |  Linux Box   | (192.222.33.4)        | Windows 2K
> Box|(192.222.33.5)
>            |   (Apache)   |                       |    (Apache)   |
>            |              |                       |  (PuTTY)      |
>            +--------------+                       |               |
>                                                   +---------------+
> 
> 
> If I configure my router to do port forwarding with Port 80 pointing to the
> Windows Box with Apache, external users can view the server. If I change the
> router/port forwarding to point to the Linux Box/Apache server, the user is
> unable to access the Apache server. A quick review of the Apache log files
> does not reveal a hit to the server. This seems to indicate that the request
> from the external user didn't "get" to the Apache server.
> 
> I'm begining to believe that the real issue has to do with how the Linux box
> is configured to accept/handle network communications. I'm able to look at
> the linux Apache server from other boxes within my network, provided I use
> the internal (192.XX) address. So the Apache server is working properly.
> 
> So my question: How do I expand the IP addresses that are able to access the
> Linux Box? Or, might there perhaps be another problem? I'm realtively new to
> the world of Linux. I have RH 8.0 with the Gnome GUI. Pointers/assistance to
> whatever functions/commands would be appreciated!!

Check your iptables rules on your server, using the following command
(as root):
# iptables -L

Make sure you are allowing port 80 through from anywhere to anywhere. It
might look something like this (but my server is running RH 7.3, still
using ipchains):
ACCEPT     tcp  ------  0.0.0.0/0     0.0.0.0/0      * ->   80

-- 
Dave Sherman
MCSE, MCSA, CCNA
"If we wanted you to understand it, we wouldn't call it code."

Attachment: signature.asc
Description: This is a digitally signed message part

[Index of Archives]     [Fedora General Discussion]     [Red Hat General Discussion]     [Centos]     [Kernel]     [Red Hat Install]     [Red Hat Watch]     [Red Hat Development]     [Red Hat 9]     [Gimp]     [Yosemite News]

  Powered by Linux