From owner-freebsd-questions Wed Sep 6 18:34: 2 2000 Delivered-To: freebsd-questions@freebsd.org Received: from xena.gsicomp.on.ca (gsi.enoreo.on.ca [209.82.52.145]) by hub.freebsd.org (Postfix) with ESMTP id 6A8BE37B423 for ; Wed, 6 Sep 2000 18:33:58 -0700 (PDT) Received: from zircon (cr677933-a.ktchnr1.on.wave.home.com [24.42.130.87]) by xena.gsicomp.on.ca (8.10.1/8.9.2) with SMTP id e871Id948827; Wed, 6 Sep 2000 21:18:41 -0400 (EDT) (envelope-from matt@gsicomp.on.ca) Message-ID: <001301c01869$96479440$1200a8c0@zircon> From: "Matthew Emmerton" To: "Terje Oseberg" , References: Subject: Re: FreeBSD 4.0 Firewall System and Problem with Apache Name Virtual Hosts Date: Wed, 6 Sep 2000 21:18:50 -0400 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > If I'm on the system under test and I telnet to localhost port 80 > and do the GET requests, it doesn't work, but when I telnet to port > 80 from another computer, it does work. This is on FreeBSD 3.2 that > I noticed this and with this particular config file and the original > config file that I had on that system. > > I'm thinking that when I telnet to localhost, it telnet's to the > wrong (internal rather than external) IP adress. And maybe the bug > in FreeBSD 4.0 is that when you telnet from outside the firewall > to port 80, it actually believes that you're inside the firewall. If you telnet to port 80 on the local system, the request is coming from inside the firewall. Hence, it's going to use the web servers NAT'd address or 127.0.0.1. Requests from other systems on the NAT'd network will connect to the NAT'd address of the web server. The only time when the external address will be used is when the requests come from outside the NAT/firewall. -- Matthew Emmerton GSI Computer Services +1 (800) 217-5409 (Canada) To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message