sslug-teknik team mailing list archive

Thread
Date

Re: Firewall

To: sslug-teknik@xxxxxxxx
From: "Doc Nielsen" <docnielsen@xxxxxxxxx>
Date: Mon, 24 Nov 2008 14:24:57 +0100
Delivered-to: mailing list sslug-teknik@xxxxxxxx
In-reply-to: <f2919d9f0811240358j58da8b6fmcf445749bc3a9fa6@mail.gmail.com>
Mailing-list: contact sslug-teknik-help@xxxxxxxx; run by ezmlm

On Mon, Nov 24, 2008 at 12:58 PM, Gunner <gunner@xxxxxxxxxxxxxxxxxxxx> wrote:
>> netstat -anp | grep apache
> tcp6       0      0 :::80                   :::*
> LISTEN     10291/apache2
> tcp6       0      0 ::ffff:10.10.1.98:80    ::ffff:10.10.1.1:3401
> ESTABLISHED11036/apache2
> tcp6       0      0 ::ffff:10.10.1.98:80    ::ffff:10.10.1.1:3391
> ESTABLISHED11037/apache2
> tcp6       0      0 ::ffff:10.10.1.98:80    ::ffff:10.10.1.1:3390
> ESTABLISHED12421/apache2
> unix  3      [ ]         STREAM     CONNECTED     717071   11037/apache2
>
>
>> netstat -anp | grep ':80'
> tcp        0      0 10.10.1.98:59213        194.182.134.43:80       FIN_WAIT2  -
> tcp        0      0 10.10.1.98:59212        194.182.134.43:80       FIN_WAIT2  -
> tcp        0      0 10.10.1.98:59214        194.182.134.43:80       FIN_WAIT2  -
> tcp        0      0 10.10.1.98:59209        194.182.134.43:80       FIN_WAIT2  -
> tcp        0      0 10.10.1.98:59208        194.182.134.43:80       FIN_WAIT2  -
> tcp        0      0 10.10.1.98:59210        194.182.134.43:80       FIN_WAIT2  -
> tcp        0      0 10.10.1.98:59205        194.182.134.43:80       FIN_WAIT2  -
> tcp        0      0 10.10.1.98:59204        194.182.134.43:80       FIN_WAIT2  -
> tcp        0      0 10.10.1.98:59207        194.182.134.43:80       FIN_WAIT2  -
> tcp        0      0 10.10.1.98:59203        194.182.134.43:80       FIN_WAIT2  -
> tcp6       0      0 :::80                   :::*  LISTEN     10291/apache2
> tcp6       0      0 ::ffff:10.10.1.98:80    ::ffff:10.10.1.1:3401   TIME_WAIT  -
> tcp6       0      0 ::ffff:10.10.1.98:80    ::ffff:10.10.1.1:3391
> ESTABLISHED11037/apache2
> tcp6       0      0 ::ffff:10.10.1.98:80    ::ffff:10.10.1.1:3390   TIME_WAIT  -
> tcp6       0      0 ::ffff:10.10.1.98:80    ::ffff:10.10.1.1:2807   TIME_WAIT  -
> tcp6       0      0 ::ffff:10.10.1.98:80    ::ffff:10.10.1.1:2806   TIME_WAIT  -
> tcp6       0      0 ::ffff:10.10.1.98:80    ::ffff:10.10.1.1:2809   TIME_WAIT  -
> tcp6       0      0 ::ffff:10.10.1.98:80    ::ffff:208.36.144.:4392 TIME_WAIT  -

ja, den lytter på port 80
 tcp6       0      0 :::80                   :::* LISTEN     10291/apache2
Det ser meget fint ud.

Så må vi jo kigge på iptables

iptables -n -L |grep 80

( eller iptables-save |grep 80 )

-Doc
-- 
No trees were killed in the sending of this message
However, a large number of electrons were terribly inconvenienced.
Also, Wil Wheaton Says, "Don't be a dick!"

Follow ups

Re: Firewall
From: Martin Møller Skarbiniks Pedersen, 2008-11-24
Re: Firewall
From: Gunner, 2008-11-24
Re: Firewall
From: Jesper K. Pedersen, 2008-11-24

References

Firewall
From: Gunner, 2008-11-24
Re: Firewall
From: Doc Nielsen, 2008-11-24
Re: Firewall
From: Gunner, 2008-11-24
Re: Firewall
From: Doc Nielsen, 2008-11-24
Re: Firewall
From: Gunner, 2008-11-24