General :: Servers On Same Subnet / Same Iptables / Can't Access Webmin On One
Apr 8, 2010
Two servers, one is RHEL 4, and the other is RHEL 5. They are both on the same subnet, one is 10 the other is 11. I added the Webmin rule to the iptables config file but for some reason, the RHEL 4 server, I can access Webmin but the RHEL 5 server I can not. I checked the iptables file and they are the same for both servers, except two rules which are for other ports.
I'm reading about the iptables and had a problem when I manually added the port 10000 entry after the REJECT entry, but wondering if I need to move it up higher or maybe there's another possible block?
I just installed webmin, then added the line for port 10000 into my iptables. I restarted iptables, but I still can't get to the webmin page on my server. If i stop iptables, i can connect to it. did i edit iptables wrong? could something else be blocking it?
# Firewall configuration written by redhat-config-securitylevel # Manual customization of this file is not recommended. *filter
I encountered a a dependency issue when trying to install Webmin on Ubuntu Server Edition 10.04 Beta1.
When you try to install webmin, libmd5-perl is not available in any of the lucid repositories:
I resolved the dependency prob by adding the following repository to my /etc/apt/sources.list: deb [url]
Then I did a sudo apt-get update then sudo apt-get install and libmd5-perl installed fine along with webadmin. BTW. I got a GPG error when doing a apt=get update because I did not import the public key for the debian repos I used to get libdm5-perl, which doesn't matter to me as I commented out the repos once I got libmd5-perl installed.
accessing webmin in redhat 9? the pc is set to name as localhost.localadmin and running whithout network connectivity, i just want to try and access webmin to see if my 10 users are viewable.
I tried http://localhost:10000 but error appears: connection refused while trying to contact localhost.localadmin:10000
I have had webmin running previously but i just recently installed Unbuntu server and i am now trying to install webmin. after typing this to install webmin sudo apt-get install webmin it started doing its thing and then it halts.
Giving me the following message: "Package webmin is not available, but is referred to by another package. this may mean that the package is missing, had been obsoleted , or is only available from another source."
The first thing i did after installing webmin was edit the sources.list
Then i tpyed sudo nano sources.list I uncommented everything with "deb" in front of it
I also uncommented
deb cdrom:
I then typed this sudo wget [url]
After getting that i typed this apt-get install perl libnet-ssleay-perl openssl libauthen-pam-perl libpam-runtime libio-pty-perl libmd5-perl
I try to access my mysql in webmin but i cant see it in Servers submenu.My mysql is already started.I can search the mysql in webmin search bar.I just want the mysql be place under Servers submenu..
I am trying to make Apache web server, it's work but cannot be browsed outside my subnet.I am on huge LAN network, not sure how it works, know it have TL-SL2428WEB Smart Switches and probably some kind of DHCP, every user have maximum 64KB, just plug UTP cable, and I have static address on that subnet like: "my.sub.net.ip" witch I know from Java NetworkInteface class or when I try to update IP on my www.dyndns.com Dynamic DNS account with ez-ipupdate, but my subnet is connected to Web with another IP like "my.isp.provider.ip" witch I get from whatismyipaddress.com and I check that is my Cable ISP provider web IP. It is possible that there is more subnet layers between these two IP.Problem occurs when I try to access to my web site from another computer. When I set dyndns host name to be my.sub.net.ip or use localhost everything works fine from my computer, I can access my web site, Apache work, I can use ssh. To illustrate you it work like this: Go to DNS server, find my host name, get my "my.sub.net.ip" and say "This is actually my localhost IP, no need to go on Web, lets loopback". But when I try from another computer even from my college's computer on same subnet it don't succeed. When host name is set on "my.isp.provider.ip" of course nothing works.
We, users of LAN, don't have access to our LAN nor we have admin. For example sometimes we stuck without net and we cannot even press reset button on switches or something like that, we have to wait for day to they, owner of LAN, order some professional to do that. It seems they are just user of Cable TV and IP, and they bay and install LAN without any kind of admin. Also, I use Fedora 13, with httpd, ssh and others packages that comes with Fedora 13 DVD. I know to write bash scripts, use yum, very good in C++ and Java, great programmer, but newbie in networking, , a very little Perl, html, web servers, I heard for DHCP, DNS, NAT, IP forwarding. How you see it is problem in my lack of knowledge about networking. I hope that I succeed to describe by problem with enough details. Please, try to help me. I be very graceful for any kind of help. Don't afraid to bomb my head with any kind of information hard to understand.
does somebody know how dnsmasq / iptables need to be configured such that requests to my public IP from lan are correctly NAT'ed to the host that handles them? Currently my routing device treats them like "oh, these are anyway for me, gnam gnam" which actually doesn't work.Unfortunatly setting up NAT rules that redirect requests from my lan correctly as they are redirected from wan is an option I would like to use only if there is no other possibility.I would like some kind of solution that treats packets that are sent to my public IP as normal packets that are not looped back before they even get out. So they would need to be at least sent to the wan gateway where they are directed back where my firewall can successfully treat them like all other public requests.
I am unable to restore my iptables from iptables-save after upgrading Fedora. I cannot get iptables-restore to work, and I have resorted to entering rules manually using the GUI.
I have TWO L3 + router switch (say switch1 and switch2). I created VLAN100 with VLAN ID 100 in both the switches. I created router 192.168.1.1/24 in Switch1. I created router 192.168.2.1/24 in Switch2. Switch1 is connected with 1.x/24 PCs. PCs are configured with 1.1 gateway. Switch2 is connected with 2.x/24 PCs. PCs are configured with 2.1 gateway. Both Switch1 and switch2 are connected by a trunk to carry VLAN100 data.
1)I have few PCs of 1.x connected to say Switch1 Is it possible for PC with IP 192.168.1.100(x) to ping PC with IP 192.168.2.100(y)?What are the configuration required in both switches to make them communicate ? All the device in both the subnets should ping/communicate with each other.
2)Move PC (192.168.1.100) to switch2. Move PC (192.168.2.100)to switch1.What will happen when PC(1.100) ping (2.100) and vice versa?What will happen when PC(say 1.80 in switch1) pings PC (say 1.100 in switch2) and vice versa? What will happen when PC(say 1.80 in switch1) pings PC (say 2.100 in switch1) and vice versa?
I have a server located remotely that I'd like to protect by allowing access to only my IP address (on any port). Currently anyone can access the server using ssh, http, and any other services that my server is running. (The reason I need to protect it for now is that it's a test/development server and really only needs to be accessed by me.)
The downside of doing this is every time my desktop IP address changes (from where I access the remote server), I would need to update the iptables configuration. (This could be a hassle, but based on my limited knowledge it seems to be the best way to allow access from only myself.)
Could anyone share how to allow access to my server using iptables from only my IP address and on any port?
I'm curious but recently I was troubleshooting some iptables rules to allow nfs clients access to my nfs server. What was strange was that I setup a tcpdump session on my nfs server so that I can see which ports were being requested. I ran several tcpdump sessions with the following filters in place.
tcpdump -vv src ip_of_client and dst _ip_of_client tcpdump -vv src hostname_of_client and dst hostname_of_client
However, the only packet I ever saw come over the wire to me was the client host asking for a arp resolution. Anyhow, I finally just ran 'rcpinfo -p' and added those ports to my iptables rules and it worked great. However, I would like to understand how nfs works in case I need to troubleshoot it in the future. I do understand that nfs uses portmappers, would this explain the behavior?
I have configured my squid that have a limited access to websites but still some website were accessable vis https so I removed transparent from squid. Now what changes do I have to make in iptbles
I installed Redhat Enterprise linux server5. it has two LAN card and two subnet connected to these two LAN card. i can browse network from these two network easily. But i created VLAN on one network card.Now i cant browse network from these VLAN subnet.
I'm pretty new here and I want to be able to set up my Linux box as a shared drive (so that I can use it as a backup drive to my win7 machine). I'm using webmin to administer Samba and I get to the point where it shows:
Share Name Path Security homes All Home DirectoriesRead/write to everyone
When I go to my win7 machine it I can browse to the machine (called jira2) and see the folder called homes, but when I click on the folder it says Windows cannot access \JIRA2homes. if I expand the details it says Error code 0x80070035 I am running Ubuntu 10.04.
I have an old FC2 box running Squid version 2.5. It has been running since 2003 so I am in the process of replacing it. I have a new machine with FC11, iptables, and Squid 3.0 installed.
On the old machine I use iptables to intercept Port 80 traffic and send it to Squid. By default I block all internet access and allow only sites that are in an Allowed_Sites.txt file. Within Squid I also have statements to allow certain users to bypass Squid based on their IP address.
I have set up the same thing on the new box. I have iptables intercepting the Port 80 traffic and sending it to Squid. That is working because if I remove the redirect statement from iptables all internet access is blocked.
The problem I am having is that Squid is not blocking any websites. It acts like the ACL is set to http_access allow all. I have worked on this for several hours and am stumped.
I'm establishing a server that runs DHCP server, NAT gateway and VPN server. It have two physical interfaces, one for intranet and one for internet. The NAT gateway will give internet access for intranet. Another site will connect to this server by VPN. I need the server to assign a different subnet for that site other than the local site. Do anyone know how to config the DHCP server? Should I config the client classing, and how to do it?
I'm just getting familiar with my new VPS. I have webmin installed. I'd like to host more than 1 website on my server and I just can't figure out how to add a new domain (addon domain) to my server.
I recently started with Amazon's EC2, and it's been smooth sailing up to this point. I installed the official EBS AMI ( ami-714ba518 ) for Ubuntu 10.04 and installed LAMP, etc. All this worked fine. However, Webmin is a bust. I cannot fathom why I can't get Webmin working after adding the webmin repo and installing via apt-get. This worked just fine on my physical server, but on Amazon it gives me "Firefox can't establish a connection to the server at xxxxxxx:10000." I made sure my security group allowed port 10000 through to my IP, and MySQL client connections work fine, so that can't be the problem.
Webmin running two websites from one server, i've made a second virtual server for my second site including its own document root with it's own index.html file ,but for some odd reason they both run the same site. And i use a Static ip address.
I have just done a fresh install of server 11.04 32bit.I installed webmin. I can hit webmin , but it doesn't take my login. I tried with both my users but it refuses to log me in as if my username or password is wrong.
I've set up Ubuntu 9.04 (desktop) at home in a lab environment (workgroup rather than domain) and have configured Squid. Everything works fine but, when I took it to the next level and made the proxy transparent, my problems began. I can still access sites (having pointed the XP Pro client to the squid box as the DG) and the sites are logged in /var/log/squid/access.log but I am unable to use Outlook to access my SMTP and POP3. I guess that the setup is blocking ports 25 and 110 and I'll need to configure iptables to forward packets destined for these ports directly to the "real" DG, rather than the Squid box. Here's the set up:
A single NIC (eth0) on 172.19.0.250 / 16 (static) ADSL router ("real" DG) on 172.19.0.1 I executed iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 3128 My squid.conf:
Code: acl all src all acl manager proto cache_object acl localhost src 127.0.0.1/32 acl to_localhost dst 127.0.0.0/8 acl localnet src 10.0.0.0/8# RFC1918 possible internal network acl localnet src 172.16.0.0/12# RFC1918 possible internal network acl mynet src 172.19.0.0/16 [Code]....
I put together this 500+ page .pdf how-to, if your looking to setup a server, and manage it with Webmin. built on Debian, but should work here to for the most part[URL]..
I am planning to setup my own webserver using webmin, but from what i've read i apprently need two harddrives. one for the OS & one for the data. can i just partition my harddrive into two because i dont have another hdd lying around. i also just want to note that this is my first time trying to do something like this sooo I rly want to try to set up my own server . As a side note ill list the specs of the comp i plan to use as a server. Pentium 4 2.8ghz, 1gb DDR, 80GB 7200RPM HDD.
I want to make a daily backup of my websites from ubuntu server over ftp to another server I own. Backup schedule and process works, the problem is backup restore. Winrar says: The file is corrupt, 7-zip crashes.
Backup archive looks ok (the same size as original folder) and you can also extract it ignoring the error by winrar. But the extracted folder only contains one or two subfolder and one file(usually image) and that's all.
If I try to restore from Webmin it doesn't report any error, and it looks like restore worked. But restored files are nowhere.
I've got an old computer around that I've put Ubuntu server 8.04 on.At the moment, this is only a little hobby of mine purely for educational purposes. (Great for learning Linux!) After using this tutorial:URL...for setting up a LAMP-server, I'm trying to figure out is whether or not setting up a root-password is necessary or not. I think the tutorial is really great for a newbie, but it consistently uses su instead of sudo.I'm aware of the fact that setting a root-password isn't recommended in the documentation, but don't you need a root-account to be able to run tools such as webmin?
i try to access my webmin but it give me "This webpage is not available." now, webmin is useless for me if i want to uninstall webmin, is some other application will affected (like apache, mysql, etc) ?
