Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

Apache not responding to web requests after ISP change
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
FIX5150
n00b
n00b


Joined: 20 Aug 2007
Posts: 1
PostPosted: Mon Aug 20, 2007 1:33 pm    Post subject: Apache not responding to web requests after ISP change Reply with quote
First, let me start by stating that I am by no means an apache or
linux expert.

I was contracted to move a school from one ISP to another. There T1
service provider was discontinuing service, so they went with Optimum
Business with a single static IP.

Their firewall is a Netscreen 25, with outside, inside and DMZ
networks.

>From the outside SMTP (25) and SSH (22) work to the linux box no

problem, as well as seeing inbound HTTP (80) packets via TCPDUMP. The
box just doesnt send an ACK to any port 80 packets it encounters from
the outside (untrusted) interface.

Requests from the internal (trusted) network are responded to with no
issue.

There have not been ANY changes to the linux box. The only thing that
has changed is the external IP address. The approriate DNS changes
have also been made, and mail is also flowing through this box with no
problems. It is relaying for the internal MS Exchange server.

On the firewall a VIP is setup, redirecting port 80, 25 and 22 to this
servers IP of 192.168.1.3. Everything works excepts 80, and whats
killing me is that I can see the packets pass through the firewall,
AND see them on the box itself via TCP DUMP, AND SERVICES ARE
WORKING!.

My question is; could there be something specific to APACHE that may
be causing this?

Thanks!
Back to top
View user's profile Send private message
massimo
Veteran
Veteran


Joined: 22 Jun 2003
Posts: 1226
PostPosted: Mon Aug 20, 2007 2:38 pm    Post subject: Reply with quote
Is apache listening on a different port than 80? Is there anything in the apache logs (error, access) what would give us some more information? What does the apache configuration for this specific host look like (virtual host?)?
_________________
Hello 911? How are you?
Back to top
View user's profile Send private message
Hu
Administrator
Administrator


Joined: 06 Mar 2007
Posts: 23101
PostPosted: Wed Aug 22, 2007 1:11 am    Post subject: Reply with quote
Please post the output of netstat -atn ; iptables-save -c ; emerge -pv apache; ip addr; ip route; sysctl -a | grep rp_filter from 192.168.1.3, the tcpdump output that indicates that it is working, and a description of the behavior seen by a client trying to access the site from the external interface. Specifically, I want to know whether the request hangs or immediately fails.

Also, are there any other hops between the NAT device and the Apache? I doubt anything in the Apache configuration could be causing this, since Apache cannot suppress sending a SYN|ACK back to the client. Apache can only choose to refuse service after the OS has already sent the SYN|ACK. Since you see no SYN|ACK, the problem lies elsewhere.
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy