Apache on Yellow Dog Linux
cam
yellowdog-general@lists.terrasoftsolutions.com
28 Jul 2004 23:19:24 -0600
So just to post the resolution to the problem --- simply change or in my
case, since I don't understand iptables yet, stop - the iptables service, and voila! it all works.
Many thanks Bill!
> > If it's not, then shut down iptables and try it again. In
> > fact, just do> that> first and see what you get....
> > > ---------------------------------------->
> > So I did do that and got the results below. How does one 'shutdown'
> > iptables?
> [root@localhost root]# service iptables stop
> ^^^^^^^^^^^^^^^^^^^^^
>
> > in anycase I don't see anything 'untoward' about the results. :)
> Packet coming in to port 80.....
>
> > > Chain INPUT (policy ACCEPT)
> > > target prot opt source destination
> > RH-Lokkit-0-50-INPUT all -- anywhere anywhere
> Oop, redirected to RH-Lokkit-0-50-INPUT....
>
> > > Chain FORWARD (policy ACCEPT)
> > > target prot opt source destination>
> > > > Chain OUTPUT (policy ACCEPT)
> > > target prot opt source destination
> ...here it is....
>
> > > Chain RH-Lokkit-0-50-INPUT (1 references)
> > > target prot opt source destination
> > > ACCEPT udp -- kili.ab.tac.net anywhere udp
> > spt:domain dpts:1025:65535
> > > ACCEPT udp -- sodium.ab.tac.net anywhere udp
> > spt:domain dpts:1025:65535
> > > ACCEPT udp -- lithium.ab.tac.net anywhere udp
> > spt:domain dpts:1025:65535
> > > ACCEPT udp -- anywhere anywhere udp
> > spts:bootps:bootpc dpts:bootps:bootpc
> > > ACCEPT udp -- anywhere anywhere udp
> > spts:bootps:bootpc dpts:bootps:bootpc
> > > ACCEPT all -- anywhere anywhere
> OOOF! Rejected at destination port 80 (which is between 0 and 1023).
>
> > > REJECT tcp -- anywhere anywhere tcp> dpts:0:1023 flags:SYN,RST,ACK/SYN reject-with icmp-port-unreachable
> > > REJECT tcp -- anywhere anywhere tcp> dpt:nfs flags:SYN,RST,ACK/SYN reject-with icmp-port-unreachable
> > > REJECT udp -- anywhere anywhere udp> dpts:0:1023 reject-with icmp-port-unreachable
> > > REJECT udp -- anywhere anywhere udp> dpt:nfs reject-with icmp-port-unreachable
> > > REJECT tcp -- anywhere anywhere tcp> dpts:x11:6009 flags:SYN,RST,ACK/SYN reject-with icmp-port-unreachable
> > > REJECT tcp -- anywhere anywhere tcp> dpt:xfs flags:SYN,RST,ACK/SYN reject-with icmp-port-unreachable