I need to publish my local webserver from my lan to access outside using internet, I have public ips provided by ISP my local webserver address is 192.168.1.5 and I want to bind this local address to a public ip (Ex: 61.8.153.212) to use it out side my lan through squid.
View 11 Replies
I finally got the certs to configure:
openvpn --config server.conf
Tue May 3 17:26:27 2011 OpenVPN 2.1.1 i686-redhat-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Jan 5 2010
Tue May 3 17:26:27 2011 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Tue May 3 17:26:27 2011 Diffie-Hellman initialized with 1024 bit key
Tue May 3 17:26:27 2011 TLS-Auth MTU parms [ L:1542 D:138 EF:38 EB:0 ET:0 EL:0 ]
Tue May 3 17:26:27 2011 ROUTE default_gateway=192.168.122.1
Tue May 3 17:26:27 2011 TUN/TAP device tun0 opened
Tue May 3 17:26:27 2011 TUN/TAP TX queue length set to 100
Tue May 3 17:26:27 2011 /sbin/ip link set dev tun0 up mtu 1500
Tue May 3 17:26:27 2011 /sbin/ip addr add dev tun0 local 10.8.0.1 peer 10.8.0.2
Tue May 3 17:26:27 2011 /sbin/ip route add 10.8.0.0/24 via 10.8.0.2
Tue May 3 17:26:27 2011 Data Channel MTU parms [ L:1542 D:1450 EF:42 EB:135 ET:0 EL:0 AF:3/1 ]
Tue May 3 17:26:27 2011 Socket Buffers: R=[114688->131072] S=[114688->131072]
Tue May 3 17:26:27 2011 UDPv4 link local (bound): [undef]:1194
Tue May 3 17:26:27 2011 UDPv4 link remote: [undef]
Tue May 3 17:26:27 2011 MULTI: multi_init called, r=256 v=256
Tue May 3 17:26:27 2011 IFCONFIG POOL: base=10.8.0.4 size=62
Tue May 3 17:26:27 2011 IFCONFIG POOL LIST
Tue May 3 17:26:27 2011 Initialization Sequence Completed
But openvpn still won't start; where to go from here.
Tue May 3 17:54:25 2011 TCP/UDP: Socket bind failed on local address 192.168.122.3:1194: Address already in use
Tue May 3 17:54:25 2011 Exiting
I am using Fedora and I can see the public folders from other computers on my network as 'public on xxx'. Is there any way to mount that to the local fs? The way it is now I can only access it in the file manager.
View 2 Replies View RelatedCurrently my OS is Ubuntu 9.04 Jaunty Jackalope Desktop OS and my web server is Apache2. I have a public address 60.x.y.z and my pc local address is 10.x.y.z. I have a web app in my Apache2 which currently run in localhost(10.x.y.z).
I would like to enable the web app so that it could be browse from outside. I know there maybe some port forwarding process and some commands involved in order to do that. But I have no idea on the steps to do that.
Consider the following program:
Code:
#include <stdio.h>
#include <stdint.h>
[code]...
I have vps box with debian. I have two ip addresses, but first (default) is currently unavailable. In that case there is many problem. Fortunately wget has --bind-address option so I can download. My question is how can i configure apt-get, aptitude to use specific address?
View 1 Replies View RelatedUbuntu was a good choice for free server O/S. I am currently downloading it. My ISP wants to bind my static IP to a MAC address of the device that will be making my connection for me. Should my server be behind my router or in front of it? I kinda wanted it to be the access point and be able to monitor the usage from all the terminals in my house. We have 4 other PC's, a laptop and a PS3. My server is a Acer Altos G530 with 3.2 Xeon Processor, 4 gb of ECC DDR,
View 7 Replies View RelatedI have a few external IP's assigned to me by my ISP. I have IPcop as my router/firewall. I am wondering how to bind 1 of my external ip's to my internal ip address. So I do not have to port forward, etc. For Example, 77.77.77.77 to 192.168.1.123 and on the server it see's the external IP address.
View 2 Replies View RelatedI want to let a regular user (not just root) restart apache on my Ubuntu machine.I was using /etc/init.d/apache2 so I figured this is what I have to set permissions for. I set the owner group for this file a group to which that user also belongs. I set the chmod to 775 but it didn't work. I then even set it to 4775 thinking this would totally make it work but it still didn't.I'm obviously giving permissions to the wrong file.
The error says:
Quote:
httpd not running, trying to start (13)Permission denied: make_sock: could not bind to address 0.0.0.0:80 no listening sockets available, shutting down Unable to open logs But I didn't find httpd anywhere on my machine.
- I setup port forwarding of openssh :
connect 1: ssh -g -f -p 11111 -i /<path-to-private-key> user1@ip-server1 -L 22222:ip-server1:161
- Then I setup second connection
connect 2: ssh -g -f -p 11111 -i /<path-to-private-key> user1@ip-server1 -L 22223:ip-server1:3306
- Openssh waring to me "bind: address already in use"
- So I think port 22223 have had another program use,I use command:
ps aux | grep ssh /* find process id of second connection */
kill -9 <process-id-second-connection>
netstat -an | grep 22223 /*find which program use port 22223> */
- but I can't find anywhat
- Then I run again command :
connect 2: ssh -g -f -p 11111 -i /<path-to-private-key> user1@ip-server1 -L 22223:ip-server1:3306
- And I receive a error from OpenSSH :" bind: address already in use"
I am just about to undergo a new peice of freelance work myself on Bind 9, but it has been ages since I have done this, this was on my own LAN with port 53? Blocked from outside, so mine is not public facing.
But this project is, what should I setup to make this truely secure, just to recap on my thoughts aswell, forward resolving is Domain -> IP is not it? Then Reverse is IP->Domain is not it?
I dont know for what reason, since 2 days, I started having this message whenever I try to start httpd.I commented "Listen 443", restarted httpd started correctly. I needed to comment "listen 443" in order to be able to start httpdWhat is strange is when I do
Code:
telnet mylinux 443
it responds
[code]...
I dont know for what reason, I started having this message whenever I try to start httpd.
I commented "Listen 443", restarted httpd started correctly.
I issued "lsof -iTCP:443", I get
Quote:
I can not understand where this come from and why. It seems that it is IPV6 protocol which is in fact not enabled on the network card.
Also, I can not find or dont know where 443 is configured apart from ssl.conf or httpd.conf
Today, I have added xrdp applications in order to be able to connect using RDP.
(98)Address already in use: make_sock: could not bind to address 0.0.0.0:80 no listening sockets available, shutting down. Unable to open logs
I am new to apache2 server i have been trying to start the server using the default httpd.conf file provided in the source code but when i give the following command sudo /usr/local/apache/bin/apachectl start i receive the above error and the server shuts down.
i have followed web site [URL] for MAC to IP bind but it dont work on my system
Code:
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
[code].....
After upgrading centos from 5.3 to 5.4 I have had this error when trying to restart apache:
[root@server1 conf]# apachectl stop
httpd (no pid file) not running
[root@server1 conf]# apachectl start
(98)Address already in use: make_sock: could not bind to address [::]:80
[code]....
I did the following to resolve:
fuser -k -n tcp 80
Then I restarted apache just fine.
I am in verse to test "Multicast Packet filtering".I want to setup Virtual Machines to be servers with bind option set to a multicast group address of 225.0.62.87.Then I want to configure the client VM, connecting to the multicast group address and setting the TTL as needed.
View 3 Replies View Relatedi have a xeon machine with ubuntu os machine specification is 3gb RAM 3 scsi hard drives each 73gb it have two ethernet cards one ethernet card is connected with adsl modem and the second is connected with LAN. now what is mikrotik doing for me is control access to bind mac adress with ip adress and control the band width for induvisual conection.
View 2 Replies View RelatedI have cent OS 5.5, i am not getting proper command for the same.
View 6 Replies View Relateddoes somebody know how dnsmasq / iptables need to be configured such that requests to my public IP from lan are correctly NAT'ed to the host that handles them? Currently my routing device treats them like "oh, these are anyway for me, gnam gnam" which actually doesn't work.Unfortunatly setting up NAT rules that redirect requests from my lan correctly as they are redirected from wan is an option I would like to use only if there is no other possibility.I would like some kind of solution that treats packets that are sent to my public IP as normal packets that are not looped back before they even get out. So they would need to be at least sent to the wan gateway where they are directed back where my firewall can successfully treat them like all other public requests.
View 1 Replies View Relatedwriting TCP server which is listening on port 6000. as soon as client closes the connection my server should Relisten on the same port I am getting address already in use error while binding for the second time, even if i am using SO_REUSEADDR..
View 1 Replies View RelatedBasically I am trying to set up my own server so that I can ssh into it from anywhere. I am able to SSH into my server when I use the LAN IP of my server but I am not able to SSH into it if I use the public IP address. I have read many threads and in my opinion I've tried almost all of the common fixes suggested. One possibility may be that my ISP has blocked port 22. I have taken this into consideration and sent them an email and I'm presently waiting for a reply. However, I highly doubt that my ISP has restricted acess to port 22. I would really like to be able to SSH into my server from anywhere.
1). I installed openssh client/server using the following commands:
Code:
sudo apt-get install openssh-client
sudo apt-get install openssh-client
2). I forwarded port 22 on my router. (see attachment for the settings)
3). I modified /etc/ssh/sshd_config such that my server has a static LAN address.
contents of sshd_config file:
Code:
# Package generated configuration file
# See the sshd_config(5) manpage for details
# What ports, IPs and protocols we listen for
Port 22
# Use these options to restrict which interfaces/protocols sshd will bind to .....
I then entered the command:
Code:
sudo /etc/init.d/ssh restart
4). I turned off the firewall using the command:
Code:
sudo ufw disable
5). Here is the output of the IP tables:
Code:
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
I want to do some basic web hosting, mainly for the experience. I have verizon fios for my isp, and what i am wondering is can i have the public ip address that they give me when i connect out to the internet point back to my linux box?
The reason that i am asking this is because i want to register a .com and i would like to have that point back to my linux box, i have looked at a few services and it seems that godaddy.com will do this and they seem to be the best choice. Before i register the .com i turnd on my httpd server but i am not sure how to get the public ip point back to my box...?
I have been doing some research and i am learning about things such as
ddclient
openvpn
port forwarding
nat
dynamic dns
Verizon fios like most isp's uses a dhcp connection meaning that the public ip address i get will change 1-2 a year. What i don't know is how can i setup my network at home preferably with iptables to have that public ip routed back to my linux box at home? I am using fedora 15 for those that are wondering...
Also when i enabled port forwarding and started my web server and tried loading http://mypublicipaddress in firefox i am directed to a verizon page with a login and password prompt.
I am aware that i will need to get certain information from my isp to have their public ip address routed back to my linux box but i am unware of what to ask them...?
If anyone here can tell me the following i will be so happy because it seems like a lot to hosting at home but i really want to learn...
here is what i need to know?
1) What kind of questions and information do i need to ask and get from my isp? DNS info? Logins and Passwords?
2) What do i need to do on my linux box to have that public ip address routed back to my linux box at home?
3) What rules do i need to add to my iptables script to allow this, i know there are certain nat rules that need to be added and port forwarding is needed as well..
4) anything else you can think of that i need to do...
I'm using xubuntu 9.10. NOT ubuntu server. I need to install a lamp server on my box. I cannot install a new OS like ubuntu server, have to use what I got.when I run apache2, I get:
Quote:(98)Address already in use: make_sock: could not bind to address 0.0.0.0:80
no listening sockets available, shutting down Unable to open logs I've changed the port that php listens too to 8080, 81, and I get the same message but with the new port number.
I've removed and installed apache three times, read all kind of threats on the web, but cannot find the solution! it's just driving crazy.
I have MySQL installed on my Kubuntu 10.04 desktop machine which I use for developing web applications.First, all worked fine. But then I wanted to synchronize the database with the MySQL database on my laptop, so I had to allow connections from the LAN interface. So I addedCode:bind-address =192.168.0.100to /etc/mysql/my.cnf. This worked and the synchronization was performed. I want to do this on a regular basis so I would like to keep that line in there.The problem now is that MySQL does not start on system boot. When I start up, mysql simply is not started. There are no errors in /var/log/mysql/mysql.err or /var/log/mysql.err; these files remain empty.When I try to start it using 'sudo start mysql' I get the same result. The 'start mysql' shows up in 'ps aux', but the mysql process itself does not.Now, I found out that when I run
Code:
sudo -u mysql mysqld
The mysqld daemon does start, and the server works fine. To make matters even more strange, if I kill this
[code]....
I am currently trying to get a B.A.T.M.A.N mesh network up and running. the thing uses UDP port 4305 for broadcasting to nearby nodes and it seems this port is closed or used by something else.
now i have tried to open this port with commands like
Code:
iptables -A INPUT -p udp --dport 4305 -j ACCEPT
iptables -A OUTPUT -p udp --dport 4305 -j ACCEPT
it still gives me the same error saying the socket cannot connect.any way for me to scan that udp port, see what is blocking it and open the thing up ?
I did not use below configuration in my racoon conf,
remote anonymous {
exchange_mode main;
lifetime time 1 hour;
proposal {
encryption_algorithm 3des;
hash_algorithm md5;
[Code]...
I've pruned your post from where you originally posted. In the future, please check the dates on threads which you're thinking about posting in. If you see they are dead (inactive for a few months or more) just let them rest in peace and start your own thread. You can always include links to reference the dead thread if you need to, as I've done here.
I run the following file with the >log.log redirector and it does not capture errors.
#!/bin/bash
echo ************************BEGIN LOG******************************
date +"%m/%d/%Y %H:%M:%S $HOSTNAME"
cp -f /scripts/original/clamscans.log /scripts
[code]....
The following errors show up when I run from the file from the term window, but are not written to log.log:
tar: /public/public/clamscans/*.txt: Cannot stat: No such file or directory
tar: Error exit delayed from previous errors
mv: cannot stat `/public/public/clamscans/*.txt': No such file or directory
I know with windows you can add the 2>&1 to capture error data. Is there such a thing for Linux?
I want to use single label host names on my local LAN, without using any domain (at least no registered one). My machines should be named in a fashion similar to 'myserver', 'mydesktop' etc. so that i from a browser on any LAN machine may write 'http://myserver', and get the webserver on 'myserver' (so NO domain part, e.g. myserver.domain).
Do i need to create a DNS zone for each host or is there a way to put all host in a single zone, if so; which? Would such a name be considered a root domain?
The little home server of mine has bind configured as a caching dns server. I would like to configure it to resolve local host names. I know dnsmasq can do this, so what would someone need to do to get bind to do this?The network is entirely private with all private IPs which are distributed by dhcpd.(While writing this, the feeling creeps in that it would be easier to just have dnsmasq running.)
View 2 Replies View Related
