netbsd-help: Timeout on port 80

Subject: Timeout on port 80
To: None <netbsd-help@netbsd.org>
From: Eric Fox <eric@fox.phoenix.az.us>
List: netbsd-help
Date: 08/03/1998 16:06:16
I'm running NetBSD 1.3.0 on a i386 intel pentium as my gate to the internet for
a three machine LAN.  This machine naturally has ipf & ipnat on it and I've
been successfully running Apache for a couple of months.

The problem is that recently (since just last week), I can no longer view web
pages from outside my LAN via ppp0.  They're fine from inside via ne0. 
Attempts to telnet to port 80 from the internet fail by timing out, but work
fine from the LAN.

As a test I restarted apache configured for port 8888 and it worked fine.
Modifying ipf to pass any in and pass any out hasn't helped either.

Port 80 appears to be the only one affected.  Here are examples of port scans
from the Lan:

Scanning for all open ports on fox.phoenix.az.us using tcp protocol.
Verbose is off, only printing accepted connections.

tcp    fox.phoenix.az.us             13             Connection accepted.
tcp    fox.phoenix.az.us             21             Connection accepted.
tcp    fox.phoenix.az.us             23             Connection accepted.
tcp    fox.phoenix.az.us             25             Connection accepted.
tcp    fox.phoenix.az.us             37             Connection accepted.
tcp    fox.phoenix.az.us             53             Connection accepted.
tcp    fox.phoenix.az.us             79             Connection accepted.
tcp    fox.phoenix.az.us             80             Connection accepted.
tcp    fox.phoenix.az.us            111             Connection accepted.
tcp    fox.phoenix.az.us            113             Connection accepted.
tcp    fox.phoenix.az.us            512             Connection accepted.
tcp    fox.phoenix.az.us            513             Connection accepted.
tcp    fox.phoenix.az.us            514             Connection accepted.
tcp    fox.phoenix.az.us            515             Connection accepted.
tcp    fox.phoenix.az.us            863             Connection accepted.
tcp    fox.phoenix.az.us           1025             Connection accepted.


And from the Internet:

tcp    fox.phoenix.az.us             13             Connection accepted.
tcp    fox.phoenix.az.us             21             Connection accepted.
tcp    fox.phoenix.az.us             23             Connection accepted.
tcp    fox.phoenix.az.us             25             Connection accepted.
tcp    fox.phoenix.az.us             37             Connection accepted.
tcp    fox.phoenix.az.us             53             Connection accepted.
tcp    fox.phoenix.az.us             79             Connection accepted.
tcp    fox.phoenix.az.us            111             Connection accepted.
tcp    fox.phoenix.az.us            113             Connection accepted.
tcp    fox.phoenix.az.us            512             Connection accepted.
tcp    fox.phoenix.az.us            513             Connection accepted.
tcp    fox.phoenix.az.us            514             Connection accepted.
tcp    fox.phoenix.az.us            515             Connection accepted.
tcp    fox.phoenix.az.us            863             Connection accepted.
tcp    fox.phoenix.az.us           1025             Connection accepted.


As you can see, port 80 is the only one missing.  What's happening here?

As a side issue, anyone know what's listening to 863 & 1025?



  /\---/\  Eric J Fox
 /  o o  \ mailto:eric@fox.phoenix.az.us
 \.\   /./ http://fox.phoenix.az.us
    \@/