From owner-freebsd-questions Fri Aug 24 7:43:56 2001 Delivered-To: freebsd-questions@freebsd.org Received: from whoweb.com (whoweb.com [208.146.132.20]) by hub.freebsd.org (Postfix) with ESMTP id 3782D37B408 for ; Fri, 24 Aug 2001 07:43:52 -0700 (PDT) (envelope-from mailist@whoweb.com) Received: (from mailist@localhost) by whoweb.com (8.8.8/8.8.6) id KAA21160 for freebsd-questions@FreeBSD.ORG; Fri, 24 Aug 2001 10:34:52 -0400 (EDT) Date: Fri, 24 Aug 2001 10:34:52 -0400 (EDT) From: Incoming Mail List Message-Id: <200108241434.KAA21160@whoweb.com> To: freebsd-questions@FreeBSD.ORG Subject: strange problem Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I've run into a strange problem on a 3.2 FreeBSD system that I can't resolve. The system contains two NIC's, one for a private network and one to access the Internet. Ipfw and NATD are used for requests in and out of the private network. Apache is set up on the public NIC interface as well as sendmail. Dhclient is used to get the outside IP number from the ISP and dhcpd is used to distribute private network IP numbers to internal pc's. This setup has been working fine for about two years, but suddenly the Apache web server will not answer requests coming from the outside. Telnet, FTP, ping, traceroute, and email continue to work fine so I know this is not a DNS or network hardware problem. I suspected something whacky with the port definitions in /etc/services but I cannot find anything out of place. For the heck of it, I built a new kernel and rebooted but the problem remained. I have another identical system in every way except the domain name at another facility that is working perfectly, so I copied that kernel to this machine and rebooted but the problem still persists. Having run out of ideas, I was going to do a clean install of V4.1 but visited the facility where the server and private network are located (it's a school) and realized that the private network can access the web server fine. Therefore, the problem doesn't seem to be related to a problem with port 80 or the kernel. I'm now starting to wonder if the ISP is somehow filtering traffic to port 80 on this machine. Is there a tool that will allow me to track what happens to incoming requests to port 80? Should I be debugging NATD to see if it is dropping the requests for some reason? I'll add here that the current ipfw rules are wide open and no restrictions exist for incoming or outgoing traffic. Any help would be appreciated. Thanks, Jon To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message