, Todd Vierling <tv@pobox.com>
From: Brian Buhrow <buhrow@cats.ucsc.edu>
List: netbsd-help
Date: 08/04/1998 09:20:00
It occurrs to me that you realy need to establish whether or not the
problem is that traffic is not getting in or out. My guess is that the
packets coming from the client to your server are getting in, but that your
responses are not going out the right hole. Is it possible that your httpd
is sending data with a source address that doesn't match the target address
you're trying to reach? That is, if the IP address of the inaccessible
port is 3.4.5.6 and you telnet to 3.4.5.6:80, are you sure that the machine
isn't responding with a source address of 7.8.9.10? If it is, it could be
that your provider is blocking source addresses that it thinks shouldn't be
coming from certain places in an attempt to keep people from performing IP
spoofing attacks against its customers. I'm particularly struck by this
because you have an interface of ppp0, which doesn't worrk, and an
interface of ne0, which does. What does the output of netstat -an show?
In particular, compare the things listening through inetd: ftp, telnet,
rsh, etc. with what's listening on port 80. Everything should be wild
carded. If it's not, then this might point at your problem.
-Brian
On Aug 4, 7:30am, Eric Fox wrote:
} Subject: Re: Timeout on port 80
}
} On 04-Aug-98 Todd Vierling wrote:
} > On Tue, 4 Aug 1998, Eric Fox wrote:
} >
} >: ... We do not filter any tcp/ip traffic except when the
} >: person purchases the adult filtering. I can get to ftp, icmp and telnet
} >: ports on your machine, but I cannot get to port 80. There are no configs
} >: in the terminal server nor the router to disable port 80.
} >:
} >: Which, if true, leaves me more than simply puzzled.
} >
} > Then let me address ipf again. If you turn ipf /off/ completely (ipf -D),
} > can you still not get to port 80? Is the connection then a timeout or
} > refused?
} >
} > --
} > -- Todd Vierling (Personal tv@pobox.com; Bus. todd_vierling@xn.xerox.com)
} >
}
} No affect -- I entered 'ipf -D', but the connection still times out:
}
} [user1.inficad.com] [fox]: telnet fox.phoenix.az.us 80
} Trying 208.220.148.187...
} telnet: Unable to connect to remote host: Operation timed out
}
}
} /\---/\ Eric J Fox
} / o o \ mailto:eric@fox.phoenix.az.us
} \.\ /./ http://fox.phoenix.az.us
} \@/
}
>-- End of excerpt from Eric Fox