[vox-tech] Apache: 2, Me: 0.

Peter Salzman p at dirac.org
Mon Feb 14 22:31:58 PST 2011


Third time is a charm, perhaps.  I'm trying to get Apache to work.

I can access dirac.org successfully from inside my network; I can't
access it from outside my home network.  Apache is running on a Linux
box on satan: 192.168.0.2 and I'm testing it from a MS Windows machine
on lucifer:192.168.0.3.  My ISP is optimum online.  Here are some
clues.

1. tcpdump
=========
Using tcpdump when accessing dirac.org from within the home network
(this is what works):

# tcpdump -i eth0 host ool-18bda2d2.dyn.optonline.net and tcp port 80
ool-18bda2d2.dyn.optonline.net.2826 > satan.www: Flags [S], seq
3934453911, win 65535, options [mss 1460,nop,nop,sackOK], length 0
satan.www > ool-18bda2d2.dyn.optonline.net.2826: Flags [S.], seq
2824373109, ack 3934453912, win 5840, options [mss
1460,nop,nop,sackOK], length 0
ool-18bda2d2.dyn.optonline.net.2826 > satan.www: Flags [.], ack 1, win
65535, length 0
ool-18bda2d2.dyn.optonline.net.2826 > satan.www: Flags [P.], seq
1:487, ack 1, win 65535, length 486
satan.www > ool-18bda2d2.dyn.optonline.net.2826: Flags [.], ack 487,
win 6432, length 0
satan.www > ool-18bda2d2.dyn.optonline.net.2826: Flags [P.], seq
1:211, ack 487, win 6432, length 210
ool-18bda2d2.dyn.optonline.net.2826 > satan.www: Flags [.], ack 211,
win 65325, length 0


Using tcpdump when accessing dirac.org from outside the home network
(this doesn't work)

# tcpdump -i eth0 host born.physics.ucdavis.edu and  tcp dst port 80
born.physics.ucdavis.edu.45830 > satan.www: Flags [S], seq 692754447,
win 5840, options [mss 1460,sackOK,TS val 303380783 ecr 0,nop,wscale
6], length 0
satan.www > born.physics.ucdavis.edu.45830: Flags [S.], seq
3535693591, ack 692754448, win 5792, options [mss 1460,sackOK,TS val
32070833 ecr 303380783,nop,wscale 6], length 0
born.physics.ucdavis.edu.45830 > satan.www: Flags [S], seq 692754447,
win 5840, options [mss 1460,sackOK,TS val 303383783 ecr 0,nop,wscale
6], length 0
satan.www > born.physics.ucdavis.edu.45830: Flags [S.], seq
3535693591, ack 692754448, win 5792, options [mss 1460,sackOK,TS val
32071581 ecr 303380783,nop,wscale 6], length 0
satan.www > born.physics.ucdavis.edu.45830: Flags [S.], seq
3535693591, ack 692754448, win 5792, options [mss 1460,sackOK,TS val
32071915 ecr 303380783,nop,wscale 6], length 0
born.physics.ucdavis.edu.45830 > satan.www: Flags [S], seq 692754447,
win 5840, options [mss 1460,sackOK,TS val 303389783 ecr 0,nop,wscale
6], length 0
satan.www > born.physics.ucdavis.edu.45830: Flags [S.], seq
3535693591, ack 692754448, win 5792, options [mss 1460,sackOK,TS val
32073081 ecr 303380783,nop,wscale 6], length 0
satan.www > born.physics.ucdavis.edu.45830: Flags [S.], seq
3535693591, ack 692754448, win 5792, options [mss 1460,sackOK,TS val
32073415 ecr 303380783,nop,wscale 6], length 0
satan.www > born.physics.ucdavis.edu.45830: Flags [S.], seq
3535693591, ack 692754448, win 5792, options [mss 1460,sackOK,TS val
32076415 ecr 303380783,nop,wscale 6], length 0

So packets are DEFINITELY reaching my server from outside my LAN.
Port forwarding is working, and satan is acknowledging the packets.  I
believe that definitively points to Apache server misconfiguration.
It's interesting that born and satan appear to talking to each other,
sending each other syns over and over.


2. telnet
======


More information about the vox-tech mailing list