Page 2 of 2 FirstFirst 12
Results 11 to 16 of 16

Thread: LAN clients get connection denied by Apache

  1. #11

    Re:LAN clients get connection denied by Apache

    [quote author=vvx link=board=4;threadid=8072;start=0#msg73528 date=1068236595]
    [quote author=Master Copy link=board=4;threadid=8072;start=0#msg73463 date=1068102856]
    So you can't get to the server at all from outside? Is that what you are saying? I'm sorry for all the questions, just throwing some stuff out that might shed some light on both of us.

    From what I've collected, you can access from the internal private network. correct?

    Please excuse my rusty iptable knowledge. Doesn't the "! --syn" disallow a syn flag? Have you tried passing SYN and ACK to that port from $EXTERNAL to the server?

    Just some last minute ideas. I'll read it more carefully tomorrow when I'm awake. ;D

    [/quote]

    Yeah, that was confusing me, "LAN clients" I would take to mean the internal network but if that can connect okay even when firewall is running it's gotta be the external stuff he's having probs with?
    [/quote]

    Yes, as of this moment the remaining problem was for the external clients or those who are in the Internet.

    I was able to resolve the problem for my LAN by applying the above mentioned additional firewall rule in my scripts.

    thanks

  2. #12

    Re:LAN clients get connection denied by Apache

    I should stay half awake more often. :P

  3. #13

    Re:LAN clients get connection denied by Apache

    Why is that this rule does not provide my Internet clients to access our site? My friends are using the same without a problem?

    Any comment?

    # ------------------------------------------------------------------
    # HTTP client (80)
    # ------------------------------------------------------------------

    iptables -A INPUT -i $EXTERNAL_INTERFACE -p tcp ! --syn \
    --source-port 80 \
    -d $IPADDR --destination-port $UNPRIVPORTS -j ACCEPT

    iptables -A OUTPUT -o $EXTERNAL_INTERFACE -p tcp \
    -s $IPADDR --source-port $UNPRIVPORTS \
    --destination-port 80 -j ACCEPT

  4. #14

    Re:LAN clients get connection denied by Apache

    You need the SYN flag to make a syncronization with the server, or any service for that matter. Your friends might not have it set on the interface it's coming in on. I'll try to think of some other reason it would have worked, but I'm not half asleep yet. :

  5. #15

    Re:LAN clients get connection denied by Apache

    [quote author=Master Copy link=board=4;threadid=8072;start=0#msg73682 date=1068533607]
    You need the SYN flag to make a syncronization with the server, or any service for that matter. Your friends might not have it set on the interface it's coming in on. I'll try to think of some other reason it would have worked, but I'm not half asleep yet. :
    [/quote]

    I shall wait for you then : )

  6. #16
    Itís simple, all you need to do is to do first is to control the router, which goes to the internet. If the router is simple, it has the feature of blocking and unblocking option for the IP addresses. If you are keen to block based on where these are working, you are supposed to have a firewall. Some of the consumer routers have this sort of feature partially wherein you can do this function by employing the feature OPENDNS, however, any smart users can easily bypass this. A good firewall can be simply and expensive option but you can even see people creating their own or use free Linux based firewalls as well.
    for more details please visit: http://www.truetime-applications.com

Similar Threads

  1. Replies: 0
    Last Post: 12-06-2007, 04:52 PM
  2. Replies: 2
    Last Post: 06-13-2007, 04:49 PM
  3. apache server with SSL connection
    By erictcy in forum Linux - General Topics
    Replies: 0
    Last Post: 10-21-2004, 02:15 AM
  4. Access Denied
    By NewGuy in forum Linux - General Topics
    Replies: 3
    Last Post: 06-09-2002, 07:32 PM
  5. permission denied, wtf?
    By boblucci in forum Linux - General Topics
    Replies: 20
    Last Post: 11-30-2001, 12:19 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •