server iso install... silly apache question.

Dave Mallery dave.mallery at gmail.com
Thu Oct 20 23:44:22 UTC 2005 

hi

i installed from the new server 5.10 iso today on an smp amd mp 1200 box
destained to take over serving my mess of eBay pix to the web.

my only other experience with apache1 has been a knoppix install that "just
worked"... where i didn't learn much.

here's what works. the box is in my dmz network
(10.42.43.0<http://10.42.43.0>).
i can wget to it from my inside net (10.42.42.0 <http://10.42.42.0>) and get
back anything i want. but i can't use my browser to get anything. (nor, i
discover, can i get anything off my existing server with a browser... never
tried before.) the existing server (10.42.43.100 <http://10.42.43.100>) is
working fine serving up my pix.

i tried just swapping ethernet cables (using same ip) and it did not serve
pix so i changed its ip (10.42.43.101 <http://10.42.43.101>) and cableled it
up to the dmz net.

i have code in my floppyfirewall config that passes packets from the inside
net to the dmz and in reverse:

# Accepting packets between Inside and DMZ
iptables -A FORWARD -s ${INSIDE_NETWORK}/${INSIDE_NETMASK} -d
${DMZ_NETWORK}/${DMZ_NETMASK} -j ACCEPT
iptables -A FORWARD -s ${DMZ_NETWORK}/${DMZ_NETMASK} -d
${INSIDE_NETWORK}/${INSIDE_NETMASK} -j ACCEPT

# Accepting web traffic
iptables -A FORWARD -p tcp -d ${SERVER_IP} --dport 80 -o ${DMZ_DEVICE} -j
ACCEPT
#iptables -A FORWARD -p tcp -d ${SERVER1_IP} --dport 80 -o ${DMZ_DEVICE} -j
ACCEPT

# Forwarding web traffic
iptables -A PREROUTING -t nat -p tcp -d ${OUTSIDE_IP} --dport 80 -j DNAT
--to ${SERVER_IP}:80
#iptables -A PREROUTING -t nat -p tcp -d ${OUTSIDE_IP2} --dport 80 -j DNAT
--to ${SERVER1_IP}:80

does someone spot something here that would prohibit an inside network
browser from working onto the dmz?

i presume that wget uses apache2 to get the stuff from the server. and it
sez it is using port 80.

lab64:~/floppyfw2> wget http://10.42.43.101/
--17:34:51-- http://10.42.43.101/
=> `index.html'
Connecting to 10.42.43.101:80 <http://10.42.43.101:80>... connected.
HTTP request sent, awaiting response... 200 OK
Length: 1,457 [text/html]

100%[=================================================================================>]
1,457 7.30K/s

17:34:51 (7.29 KB/s) - `index.html' saved [1,457/1,457]

so apache2 is working on the new server.

so what is preventing firefox from connecting? (http://10.42.43.101/) or
other permutations.

thanks very much.

dave

--
Dave Mallery, K5EN (ubuntu linux 5.10)
PO Box 520 .~. _ Ramah, NM 87321
/V\ -o)
no gates... /( )\ /\\ running Debian GNU/Linux
no windows! ^^^^^ _\_v free at last!
linux counter #64628 SCO delenda est

www.stores.ebay.com/davessurpluscables/<http://www.stores.ebay.com/davessurpluscables/>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.ubuntu.com/archives/ubuntu-users/attachments/20051020/58c4f63c/attachment.html>

More information about the ubuntu-users mailing list