[opensuse] virtual IP port is filtered
I'm hoping someone can help me here. I've added an additional network address to a nic with alias 1 (eth0:1). This is to be used for an additional web server on port 80. iptables is open: # iptables -L Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination When I scan the ip address with nmap: nmap -p80 -sV 192.168.1.95 Starting Nmap 4.75 ( http://nmap.org ) at 2013-10-03 08:15 CDT Interesting ports on server.domain.com (192.168.1.95): PORT STATE SERVICE VERSION 80/tcp filtered http Anyone know why this port is filtered instead of open? Thanks, James -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
James Pifer wrote:
I'm hoping someone can help me here. I've added an additional network address to a nic with alias 1 (eth0:1). This is to be used for an additional web server on port 80. iptables is open:
# iptables -L Chain INPUT (policy ACCEPT) target prot opt source destination
Chain FORWARD (policy ACCEPT) target prot opt source destination
Chain OUTPUT (policy ACCEPT) target prot opt source destination
When I scan the ip address with nmap:
nmap -p80 -sV 192.168.1.95
Starting Nmap 4.75 ( http://nmap.org ) at 2013-10-03 08:15 CDT Interesting ports on server.domain.com (192.168.1.95): PORT STATE SERVICE VERSION 80/tcp filtered http
Anyone know why this port is filtered instead of open?
"filtered" in nmap-speak means: Nmap cannot determine whether the port is open because packet filtering prevents its probes from reaching the port. The filtering could be from a dedicated firewall device, router rules, or host-based firewall software. Do you have anything actually listening on port 80? -- Per Jessen, Zürich (15.5°C) http://www.hostsuisse.com/ - dedicated server rental in Switzerland. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
On 10/3/2013 10:20 AM, Per Jessen wrote:
"filtered" in nmap-speak means:
Nmap cannot determine whether the port is open because packet filtering prevents its probes from reaching the port. The filtering could be from a dedicated firewall device, router rules, or host-based firewall software.
Do you have anything actually listening on port 80?
Yep: # netstat -pln | grep -i tcp tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN 2025/rpcbind tcp 0 0 192.168.1.95:80 0.0.0.0:* LISTEN 3995/java tcp 0 0 192.168.1.95:4500 0.0.0.0:* LISTEN 3995/java tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 2256/sshd tcp 0 0 127.0.0.1:631 0.0.0.0:* LISTEN 2274/cupsd tcp 0 0 0.0.0.0:5849 0.0.0.0:* LISTEN 2660/Xvnc tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 2397/master tcp 0 0 0.0.0.0:8090 0.0.0.0:* LISTEN 3995/java tcp 0 0 127.0.0.1:6010 0.0.0.0:* LISTEN 2604/0 tcp 0 0 0.0.0.0:3389 0.0.0.0:* LISTEN 3995/java tcp 0 0 0.0.0.0:5949 0.0.0.0:* LISTEN 2660/Xvnc tcp 0 0 0.0.0.0:3390 0.0.0.0:* LISTEN 3995/java tcp 0 0 0.0.0.0:16000 0.0.0.0:* LISTEN 3995/java tcp 0 0 0.0.0.0:6049 0.0.0.0:* LISTEN 2660/Xvnc tcp 0 0 192.168.1.95:52042 0.0.0.0:* LISTEN 3995/java tcp 0 0 192.168.1.95:16010 0.0.0.0:* LISTEN 3995/java tcp 0 0 192.168.1.95:1099 0.0.0.0:* LISTEN 3995/java Thanks, James -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
James Pifer wrote:
On 10/3/2013 10:20 AM, Per Jessen wrote:
"filtered" in nmap-speak means:
Nmap cannot determine whether the port is open because packet filtering prevents its probes from reaching the port. The filtering could be from a dedicated firewall device, router rules, or host-based firewall software.
Do you have anything actually listening on port 80?
Yep:
# netstat -pln | grep -i tcp tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN 2025/rpcbind tcp 0 0 192.168.1.95:80 0.0.0.0:* LISTEN 3995/java
Okay. And it does not answer if you try to telnet to it? Maybe have a tcpdump running on eth0 host 192.168.1.95 to keep an eye on traffic coming and going. -- Per Jessen, Zürich (14.7°C) http://www.hostsuisse.com/ - dedicated server rental in Switzerland. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
On 10/3/2013 10:34 AM, Per Jessen wrote:
James Pifer wrote:
Yep:
# netstat -pln | grep -i tcp tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN 2025/rpcbind tcp 0 0 192.168.1.95:80 0.0.0.0:* LISTEN 3995/java
Okay.
And it does not answer if you try to telnet to it? Maybe have a tcpdump running on eth0 host 192.168.1.95 to keep an eye on traffic coming and going.
Pers, Thank you for your assistance. Turned out to be a configuration issue with the web services. Took a while, but eventually found it. Much appreciated. James -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org
participants (2)
-
James Pifer -
Per Jessen