From owner-freebsd-questions Sun Dec 22 15:55:20 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9DFD337B401 for ; Sun, 22 Dec 2002 15:55:18 -0800 (PST) Received: from east.ath.cx (catv-50622a7a.nyircatv.broadband.hu [80.98.42.122]) by mx1.FreeBSD.org (Postfix) with ESMTP id 293A943EE5 for ; Sun, 22 Dec 2002 15:55:17 -0800 (PST) (envelope-from andrew@east.ath.cx) X-Complaints-To: help@kronos.homeunix.com X-SMTP-Authenticated: GSSAPI Received: from slave.east.ath.cx (slave.kronos.homeunix.com [10.1.1.1]) (authenticated bits=0) by east.ath.cx (8.12.6/8.12.6) with ESMTP id gBMNtAJb095622 (version=TLSv1/SSLv3 cipher=EDH-RSA-DES-CBC3-SHA bits=168 verify=NO) for ; Mon, 23 Dec 2002 00:55:10 +0100 (CET) (envelope-from andrew@east.ath.cx) Date: Mon, 23 Dec 2002 00:55:10 +0100 (CET) From: Andrew Prewett Reply-To: Andrew Prewett To: freebsd-questions@FreeBSD.ORG Subject: RE: Refusing Connections In-Reply-To: Message-ID: <20021223004436.F56101@slave.east.ath.cx> References: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Dec 22 Jimi Thompson wrote: > This is a strange one. Here's the deal. The traffic doesn't even appear to > be making it as far as the Apache process. That's why I was looking for > something in the OS that would be blocking it (like the firewall). > > # > # Listen: Allows you to bind Apache to specific IP addresses and/or > # ports, in addition to the default. See also the > # directive. > # > # Change this to Listen on specific IP addresses as shown below to > # prevent Apache from glomming onto all bound IP addresses (0.0.0.0) > # > #Listen 12.34.56.78:80 > Listen 80 change this to `Listen 4.60.243.40:80' and see what happens... (assuming IP# 4.60.243.40 where apache should bind/listen) > > > Yep and I'm not getting a thing in the error logs either. My access log is > totally empty. > > My error log shows this when I stop and restart it by hand - > > [Sat Dec 21 23:48:19 2002] [notice] caught SIGTERM, shutting down > > [Sat Dec 21 23:48:25 2002] [warn] RSA server certificate CommonName (CN) > `web1' does NOT match server name!? > [Sat Dec 21 23:48:28 2002] [warn] RSA server certificate CommonName (CN) > `web1' does NOT match server name!? > [Sat Dec 21 23:48:28 2002] [notice] Apache/2.0.43 (Unix) mod_ssl/2.0.43 > OpenSSL/0.9.6g configured -- resuming > normal operations > > Netstat, however, has other ideas - > > netstat -an -finet -ptcp > Active Internet connections (including servers) > Proto Recv-Q Send-Q Local Address Foreign Address (state) > tcp4 0 0 4.60.243.40.22 4.60.243.201.1277 > ESTABLISHED > tcp4 0 0 *.8021 *.* LISTEN > tcp4 0 0 *.8080 *.* LISTEN ^^^^ this is a proxy? You dont changed the apache default port at compile time? > tcp4 0 0 *.587 *.* LISTEN > tcp4 0 0 *.25 *.* LISTEN > tcp4 0 0 4.60.243.40.22 *.* LISTEN somewere in the netstat output should be a line like: tcp4 0 0 4.60.243.40.80 *.* LISTEN -andrew > Thanks, > > Ms. Jimi Thompson To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message