vlassishlk
12-08-06, 14:40
Εχω ένα router netroute2 συνδεδεμένο μέσω της eth2 με ενα switch. Στο switch έχω συνδεδεμένα 4 pc(3 με windows και 1 με linux suse 10)Τα pc ειναι ρυθμισμένα να έχουν static ips απο 192.168.1.2-5. Στο linux pc εχω εκγατεστημένο τον apache HTTP server που δουλεύει στην Port 80.
To πρόβλημά μου είναι ότι έχω πρόσβαση στον HTTP server μόνο μέσα από το δίκτυο μου.Αν βάλω την ip της ΗΟL (89.210.9.11) δεν βλέπω apache αλλά τον router.
Έχω κάνει από τον router allow την port 80 και DNAT την port 80 στην IP 192.168.1.4 που είναι το Linux, αλλά παρόλα αυτά συνεχίζω να βλέπω τον router οταν βάζω την IP της HOL (89.210.9.11) ή την www.vlassishlk.homelinux.com (από DYNDNS)
Τα ίδια ακριβώς είχα κάνεις και πριν μερικούς μήνες και όλα δούλευαν καλά. Καμιά ιδέα τι κάνω λάθος????
Δοκίμασα με διάφορα ports και τίποτα. Δοκίμασα και εγκατέστησα τον Apache σε ένα Windows XP home pc και πάλι τα ίδια. Έχω απεπλιστεί.
Να και οι ρυθμίσεις firewall και ΝΑΤ
Firewall Current Status
Firewall
Chain INPUT (policy ACCEPT 2 packets, 214 bytes)
num pkts bytes target prot opt in out source destination
1 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:5000
2 0 0 ACCEPT tcp -- ppp0 * 192.168.1.4 0.0.0.0/0 state NEW,ESTABLISHED tcp dpt:80
3 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22
4 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22
5 0 0 ACCEPT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW,ESTABLISHED tcp dpt:80
6 112 14544 ACCEPT all -- eth0 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
7 8882 859K ACCEPT all -- eth1 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
8 0 0 ACCEPT all -- usb0 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
9 0 0 ACCEPT all -- eth3 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
10 16 1408 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
11 16 2099 ACCEPT all -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state ESTABLISHED
12 22 2340 ACCEPT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp dpts:1025:65535
13 8 720 ACCEPT udp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp dpts:1025:65535
14 0 0 ACCEPT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 state NEW,ESTABLISHED
15 0 0 ACCEPT icmp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 icmp type 0
16 0 0 ACCEPT icmp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 icmp type 8 limit: avg 1/sec burst 3
17 0 0 ACCEPT esp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
18 0 0 ACCEPT ah -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
19 0 0 DROP icmp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 icmp type 13
20 0 0 REJECT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:113 reject-with tcp-reset
21 0 0 DROP all -- ppp0 * 255.255.255.255 0.0.0.0/0
22 0 0 DROP all -- ppp0 * 127.0.0.0/8 0.0.0.0/0
23 0 0 DROP all -- ppp0 * 169.254.0.0/16 0.0.0.0/0
24 0 0 DROP all -- ppp0 * 192.0.2.0/24 0.0.0.0/0
25 0 0 DROP all -- ppp0 * 248.0.0.0/5 0.0.0.0/0
26 0 0 DROP all -- ppp0 * 10.0.0.0/8 0.0.0.0/0
27 0 0 DROP all -- ppp0 * 172.16.0.0/16 0.0.0.0/0
28 0 0 DROP all -- ppp0 * 192.168.0.0/16 0.0.0.0/0
29 0 0 DROP all -- ppp0 * 224.0.0.0/4 0.0.0.0/0
30 0 0 DROP all -- ppp0 * 240.0.0.0/5 0.0.0.0/0
31 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x3F/0x3F
32 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x3F/0x00
33 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x3F/0x29
34 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x3F/0x37
35 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x06
36 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x03/0x03
37 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x05/0x05
38 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x11/0x01
39 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x18/0x08
40 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x30/0x20
41 5 270 DROP all -- ppp0 * 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy ACCEPT 99211 packets, 79M bytes)
num pkts bytes target prot opt in out source destination
1 0 0 ACCEPT udp -- ppp0 * 0.0.0.0/0 192.168.1.4 state NEW,ESTABLISHED udp dpt:80
2 0 0 ACCEPT tcp -- ppp0 * 0.0.0.0/0 192.168.1.4 state NEW,ESTABLISHED tcp dpt:80
3 993 47700 TCPMSS tcp -- * ppp0 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x02 TCPMSS clamp to PMTU
Chain OUTPUT (policy ACCEPT 8223 packets, 1252K bytes)
num pkts bytes target prot opt in out source destination
1 1 60 TCPMSS tcp -- * ppp0 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x02 TCPMSS clamp to PMTU
NAT
Chain PREROUTING (policy ACCEPT 7249 packets, 396K bytes)
num pkts bytes target prot opt in out source destination
1 0 0 DNAT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:10011 to:192.168.1.4
2 0 0 DNAT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 to:192.168.1.4
Chain POSTROUTING (policy ACCEPT 4 packets, 216 bytes)
num pkts bytes target prot opt in out source destination
1 1103 55810 MASQUERADE all -- * ppp0 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT 14 packets, 888 bytes)
num pkts bytes target prot opt in out source destination
To πρόβλημά μου είναι ότι έχω πρόσβαση στον HTTP server μόνο μέσα από το δίκτυο μου.Αν βάλω την ip της ΗΟL (89.210.9.11) δεν βλέπω apache αλλά τον router.
Έχω κάνει από τον router allow την port 80 και DNAT την port 80 στην IP 192.168.1.4 που είναι το Linux, αλλά παρόλα αυτά συνεχίζω να βλέπω τον router οταν βάζω την IP της HOL (89.210.9.11) ή την www.vlassishlk.homelinux.com (από DYNDNS)
Τα ίδια ακριβώς είχα κάνεις και πριν μερικούς μήνες και όλα δούλευαν καλά. Καμιά ιδέα τι κάνω λάθος????
Δοκίμασα με διάφορα ports και τίποτα. Δοκίμασα και εγκατέστησα τον Apache σε ένα Windows XP home pc και πάλι τα ίδια. Έχω απεπλιστεί.
Να και οι ρυθμίσεις firewall και ΝΑΤ
Firewall Current Status
Firewall
Chain INPUT (policy ACCEPT 2 packets, 214 bytes)
num pkts bytes target prot opt in out source destination
1 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:5000
2 0 0 ACCEPT tcp -- ppp0 * 192.168.1.4 0.0.0.0/0 state NEW,ESTABLISHED tcp dpt:80
3 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22
4 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW tcp dpt:22
5 0 0 ACCEPT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW,ESTABLISHED tcp dpt:80
6 112 14544 ACCEPT all -- eth0 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
7 8882 859K ACCEPT all -- eth1 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
8 0 0 ACCEPT all -- usb0 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
9 0 0 ACCEPT all -- eth3 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
10 16 1408 ACCEPT all -- lo * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
11 16 2099 ACCEPT all -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state ESTABLISHED
12 22 2340 ACCEPT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED tcp dpts:1025:65535
13 8 720 ACCEPT udp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED udp dpts:1025:65535
14 0 0 ACCEPT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:22 state NEW,ESTABLISHED
15 0 0 ACCEPT icmp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 icmp type 0
16 0 0 ACCEPT icmp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 icmp type 8 limit: avg 1/sec burst 3
17 0 0 ACCEPT esp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
18 0 0 ACCEPT ah -- ppp0 * 0.0.0.0/0 0.0.0.0/0 state NEW,RELATED,ESTABLISHED
19 0 0 DROP icmp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 icmp type 13
20 0 0 REJECT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:113 reject-with tcp-reset
21 0 0 DROP all -- ppp0 * 255.255.255.255 0.0.0.0/0
22 0 0 DROP all -- ppp0 * 127.0.0.0/8 0.0.0.0/0
23 0 0 DROP all -- ppp0 * 169.254.0.0/16 0.0.0.0/0
24 0 0 DROP all -- ppp0 * 192.0.2.0/24 0.0.0.0/0
25 0 0 DROP all -- ppp0 * 248.0.0.0/5 0.0.0.0/0
26 0 0 DROP all -- ppp0 * 10.0.0.0/8 0.0.0.0/0
27 0 0 DROP all -- ppp0 * 172.16.0.0/16 0.0.0.0/0
28 0 0 DROP all -- ppp0 * 192.168.0.0/16 0.0.0.0/0
29 0 0 DROP all -- ppp0 * 224.0.0.0/4 0.0.0.0/0
30 0 0 DROP all -- ppp0 * 240.0.0.0/5 0.0.0.0/0
31 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x3F/0x3F
32 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x3F/0x00
33 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x3F/0x29
34 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x3F/0x37
35 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x06
36 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x03/0x03
37 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x05/0x05
38 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x11/0x01
39 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x18/0x08
40 0 0 DROP tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp flags:0x30/0x20
41 5 270 DROP all -- ppp0 * 0.0.0.0/0 0.0.0.0/0
Chain FORWARD (policy ACCEPT 99211 packets, 79M bytes)
num pkts bytes target prot opt in out source destination
1 0 0 ACCEPT udp -- ppp0 * 0.0.0.0/0 192.168.1.4 state NEW,ESTABLISHED udp dpt:80
2 0 0 ACCEPT tcp -- ppp0 * 0.0.0.0/0 192.168.1.4 state NEW,ESTABLISHED tcp dpt:80
3 993 47700 TCPMSS tcp -- * ppp0 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x02 TCPMSS clamp to PMTU
Chain OUTPUT (policy ACCEPT 8223 packets, 1252K bytes)
num pkts bytes target prot opt in out source destination
1 1 60 TCPMSS tcp -- * ppp0 0.0.0.0/0 0.0.0.0/0 tcp flags:0x06/0x02 TCPMSS clamp to PMTU
NAT
Chain PREROUTING (policy ACCEPT 7249 packets, 396K bytes)
num pkts bytes target prot opt in out source destination
1 0 0 DNAT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:10011 to:192.168.1.4
2 0 0 DNAT tcp -- ppp0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 to:192.168.1.4
Chain POSTROUTING (policy ACCEPT 4 packets, 216 bytes)
num pkts bytes target prot opt in out source destination
1 1103 55810 MASQUERADE all -- * ppp0 0.0.0.0/0 0.0.0.0/0
Chain OUTPUT (policy ACCEPT 14 packets, 888 bytes)
num pkts bytes target prot opt in out source destination