Author Topic: Apache2 on ebox; Firewall is blocking :(  (Read 4170 times)

timeJunky

  • Zen Apprentice
  • *
  • Posts: 9
  • Karma: +0/-0
    • View Profile
Apache2 on ebox; Firewall is blocking :(
« on: December 24, 2007, 07:29:19 pm »
Hello,

after installing apache2 on ebox .11 with sarge, I successfully testet with lynx localhost.
Unfortunately, I can't acces the server with any clients.

'HTTP-Proxy' -> General: off; (Does this effect on internal apache2 traffic?)

Rules defined in 'Services':
http - accept - TCP 80, 8080, 443

firewall - packetfilter

-> 'Filter-Regeln für Verkehr zwischen internen Netzwerken zu der eBox' (intern network traffic)
ACCEPT    Alle    http    --    
ACCEPT    Alle    soap    --    
ACCEPT    Alle    ntp    --    
ACCEPT    Alle    ldap    --    
ACCEPT    Alle    dns    --    
ACCEPT    Alle    dhcp    --    
ACCEPT    Alle    ssh    --    
ACCEPT    Alle    eBox administration

-> Filtering rules for internal networks
      Quelle      Ziel              Dienst
      Jeder       Jeder       any
(source,target, service = everybody, evrybdy, any)


-> Filter-Regeln für Verkehr von der eBox nach anderswo
ACCEPT       Alle       http


-> Filtering rules from external networks to eBox
empty




->  Filtering rules from external networks to internal networks
DENY    Jeder    Jeder    any
ACCEPT    Jeder    Jeder    http
ACCEPT    r4it    192.168.2.10/32    ssh 23465



---------------------------

Configuration:
ebox: 192.168.2.10; Gateway 192.168.2.1 (Router)
eth0      Protokoll:Ethernet  Hardware Adresse 00:D0:68:01:82:3C
          inet Adresse:192.168.2.10  Bcast:192.168.255.255  Maske:255.255.0.0
          inet6 Adresse: fe80::2d0:68ff:fe01:823c/64 G�ltigkeitsbereich:Verbindung
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:13329787 errors:0 dropped:0 overruns:0 frame:0
          TX packets:6433173 errors:0 dropped:0 overruns:0 carrier:0
          Kollisionen:0 Sendewarteschlangenl�nge:1000
          RX bytes:2245627980 (2.0 GiB)  TX bytes:458757265 (437.5 MiB)

eth0:buer Protokoll:Ethernet  Hardware Adresse 00:D0:68:01:82:3C
          inet Adresse:192.168.100.1  Bcast:192.168.255.255  Maske:255.255.0.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1

eth0:werk Protokoll:Ethernet  Hardware Adresse 00:D0:68:01:82:3C
          inet Adresse:192.168.200.1  Bcast:192.168.255.255  Maske:255.255.0.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1


Client XP Pro: 192.168.100.100; GW 192.168.2.1; Netmask 255.255.0.0
Groups:
buerocomputer (office) as buero-subnetz 192.168.100.100/32
r4it as r4it-net 192.168.2.1/32 (for computers outside the ebox)
werkstattcomputer (garage) as werk-subnetz  192.168.200.100/32



Any ideas, pls?

timeJunky

  • Zen Apprentice
  • *
  • Posts: 9
  • Karma: +0/-0
    • View Profile
Re: Apache2 on ebox; Firewall is blocking :(
« Reply #1 on: December 26, 2007, 04:11:08 pm »
oki, the external router ist not supporting netmask 255.255.0.0

furthermore, the 2nd network card (1Gbit) starts after upgrading kernel to 2.6.23.12

some other usesful stuff:
- switched off rtc module with /etc/hotplug/blacklist
- activated boot log in /etc/default/bootlogd
- activated cron on startup in /etc/syslog.conf
« Last Edit: December 26, 2007, 04:12:53 pm by timeJunky »