just switched our company from windows server to linux and everything is going good except we have 4 vpn connections though out the country coming to our server. All giving the client machines ip addresses of 192.168.x.x based on where they are located 192.168.1.x for the main location 192.168.2.x for a second location etc, and IIS could see the clients ip instead of the wan ip and was setup to block all ips except 192.168.x.x ip's and this worked great.
So i set up apache the same way, to allow only 192.168 ip's but i guess it doesn't work that way in apache for connections coming though vpn? 2 out of our 4 VPN connections are not static IP's, so the 2 that are I just add that ip to the allow list and that worked.But i don't think we should HAVE to get static ips for the other 2, that's one of the benefits of using VPN, especially if our old windows server didnt need it.Is there any way for apache to see the clients ip address for access or is there something somewhere else that needs changed for this?
I am running an apache server thru webmin, on a 8.04 install. Attempting to install awstats I have realized that access.log stopped writing some months ago. Went back thru the error logs and found I had deleted the virtual server, and started a new one. Everything else works fine, it never even occurred to me that logging would not also be restarted. I would just like to get it going again, any clues???
I came back to see on the screen a message requesting remote desktop control. So I said no and went into remote desktop and said never allow connection. I had recently hosted a PHP app on the home pc for testing purposes using apache. Here are some of the last logs entries:
I have no idea what is going on here and this is the second time it has done this but. I just installed Lucid Lynx Desktop Edition for my Server. I have installed apache php5 mysql binarys. I have 3 ips on the machine 10.0.1.30, 10.0.1.37, 10.0.1.38. .30 is the main ip 10/100 the rest are 10,100,1000 ports. I can only access Apache 2.2 over .37 or .38 but not .30
I have not used Ubuntu alot but I am starting to and this really pisses me off since all my computer have aliases to the machine through .30
I am new to web server support. I have a request from my management to modify the logging slightly. Effectively I need to redirect a custom string from our http response into the apache access logs. When a user navigates to our site they receive a "dye" number that is associated with them. This number follows them to whatever cluster they are directed too. The string is formatted as such, com-company-dye: d0a2#6dfce. I need that that header dye to appear in the access logs so we can use that dye number as a key for troubleshooting issues though out our various monitoring systems.
I'm trying to set up a computer to allow a specific samba user to access and write to a folder on the web-server without any luck. I've tried creating symbolic links in the users home to the folder (/var/www/html/something) on the web server and from the server to a directory in the users home but neither seems to work. I haven't seen any errors from SELINUX either but I'm kind of stuck. Also tried adding a directory section and alias line to the httpd.conf but after doing that apache wouldn't start so I'm not really sure how this would be done properly.
I'm not sure is this is possible or not, but what I would like to do is take my public address mydomain.com and configure a virtual host something.mydomain.com only instead of having the content on the same server I would like it to point to the IP of my virtual machine that is in my private network and display that page publicly. Does anyone know if this is possible, or how to do it? I have done this with port forwards, but would like them both to be on the same port.
I have installed Ubuntu on four machines at work and have been blown away. On my machine I have Apache setup for web development and other machines can "see" it using my IP address. I would like to have it so they can access by the name of my computer though. I have no local DNS server so I guess I need to hard code the relationship in each machine? Ideally I'd actually like to be able to use subdomains (which I use locally to avoid annoying .htaccess path problems). i.e. from another machine on the network to go to [URL].
I am sure this information is out there somewhere, but Googling apache access.log and hostname does not give you any good leads... so I hope someone here might be able to provide me with a quick answer...I am setting up a cluster of web servers, so I would like to name the access.log and error.log with the hostname of the individual servers to be able to distinguish one from another.
I am trying to setup my webserver and I am trying to make a website to run under suexec but somehow I cannot start my apache it directly fails and SELinux is giving me errors and don't really know what to do with it, it is giving me some command to type but not sure if this will make my server less secure. The SELinux error is as follow:
Code: Summary: SELinux prevented httpd reading and writing access to http files.
Detailed Description: SELinux prevented httpd reading and writing access to http files. Ordinarily httpd is allowed full access to all files labeled with http file context. This machine has a tightened security policy with the httpd_unified turned off, this requires explicit labeling of all files. If a file is a cgi script it needs to be labeled with httpd_TYPE_script_exec_t in order to be executed. If it is read-only content, it needs to be labeled httpd_TYPE_content_t, it is writable content. it needs to be labeled httpd_TYPE_script_rw_t or httpd_TYPE_script_ra_t. You can use the chcon command to change these contexts. Please refer to the man page "man httpd_selinux" or FAQ [URL] "TYPE" refers to one of "sys", "user" or "staff" or potentially other script types.
Allowing Access: Changing the "httpd_unified" boolean to true will allow this access: "setsebool -P httpd_unified=1"
Fix Command: setsebool -P httpd_unified=1
I will write down how I did setup my server so maybe you can see a mistake I did. First I changed my Apache httpd.conf I added the following to it: Code: NameVirtualHost 192.168.1.2:80 <VirtualHost 192.168.1.2:80> ServerName localhost DocumentRoot /var/www/html DirectoryIndex index.html index.html index.shtml index.php </VirtualHost>
Then I created the username "ulyaoth" with the group "ulyaoth" as I specified with my suexec, then I created all the directories as specified in my httpd.conf and "chown ulyaoth:ulyaoth (dirname)" them to the right group and username.
I've installed webdav on my server and I can access it fine through cadaver. However, when I try to access it via nautilus, I get Forbidden. It is NOT secured (SSL). When I try to access it via firefox, I get an error since I DO NOT have "Options Indexes" in my apache config file. If I add this option in, then I can browse the root direction and webdav folder via firefox, but still not from nautilus. what other information you need. I've googled and searched the forums for awhile, but not "solutions" I found have worked for me. I want the webdav folder to just be a single folder within the direction, so this is how I have my config file setup:
As a side-note...when I included "Option Indexes", it allowed me to view the passwd.dav file from firefox!That doesn't seem very good...
I am installing Big Brother on a CentOS 5.2 running the default Apache 2.2.3. When I try to access any web page I get the following error: Forbidden You don't have permission to access /bb/ on this server. Apache/2.2.3 (CentOS) Server at fmsubbnix Port 80 So far I have:
1) Set the Directory options to FollowSymLinks 2) Verified all directory and file permissions are at 755 3) Set permissions temporarily to 777 and received same error so I am assuming the issue is in a config file somewhere 4) in hhtpd.conf verified <Files ~ "^.ht"> is correct 5) verified the "default" directory is correct (/var/www/html)
I have read and tried several ideas in posts listed on the web but to no avail and am at a loss as to what to look for next..
I have Webmin installed on an Ubuntu server. I currently have a successful apache server running on port 80, however I want to create a virtual host on port 81. When I try I go to servers->Apache Webserver-> Create Virtual Host I change the port to 81 and the document root to /var/port81www then I click create. How ever when I goto 192.168.1.5:81 (local ip, I know I have to port forward but its not even working local) it does not work.
Im trying to config my intranet to be accessible from inside the network (lan) without need of password and ask for a passwd for those who are viewing from Wan ....
Today my intranet can only be accessed from Lan, external access give me an Unauthorized message, I took look around, try #irc and still can get the appropriated help, I hope that someone here could help me on that...
I'm having a problem with my webdav share. I have a secure webdav folder that gets accessed via a non-standard port and requires basic authentication. I can connect and interact with it fine via cadaver. However, when I try to connect from nautilus, it says "Access was denied." To make it even stranger, sometimes I can click on the folder in nautilus (it still mounts) and access it. Sometimes not (just repeats the error message and won't show me the contents). I may not even un-mount it, but just look at other folder, then click it again and be able to access it, but again - only rarely.
I asked a friend to try connecting from his windows vista computer and it would not work. It would not work from my windows XP virtual computer either. However, it mounts and works just find from my work computer (also Windows XP).
So it seems to be a 50/50 chance that the drive will mount on any given computer/system and work. Do anyone know what the problem may be? I'm guessing user permissions, but I can't figure out what.
I've made sure the webdav folder is owned by www-data and www-data has read access to the password file as well.
When I try connecting from nautilus, I get this in the log file:
Here is one of the (many) sites I've tried looking at: [url]
I have set up a hostname on dyndns.com and configured my router to forward port 8181, but I cannot view it from the internet (FF says "can't establish a connection to the server"). The DNS is ok, is just the apache webserver that doesn't work.
I can acces my webserver from http://localhost:8181 (loopback) http://192.168.1.1:8181 (in the LAN) BUT NOT <hostname>.dyndns.com Here is my site configuration
So, what's the matter? How can I reach my apache from the internet? Also, I read about routers loopback errors, but this seems not related to it, since I tried to get it through a proxy server, and it failed
I can access dirac.org from inside my network; I can't access it from outside my home network. Apache is running on a Ubuntu box named "satan": 192.168.0.2 and I'm testing it from a MS Windows machine named "lucifer": 192.168.0.3. My ISP is optimum online, which does not filter port 80.
0. router The router is a Netgear WNDR3700. All computers on my LAN receive their IP addresses via DHCP, but I've reserved all the IP addresses, so they are essentially static (satan is always 192.168.0.2, lucifer is always 192.168.0.3, etc). The router is set up to pass packets destined for port 80 to satan (192.168.0.2), which is where Apache runs.
1. tcpdump Using tcpdump when accessing dirac.org from within the LAN (this is what works): # tcpdump -i eth0 host ool-18bda2d2.dyn.optonline.net and tcp port 80 ool-18bda2d2.dyn.optonline.net.2826 > satan.www: Flags [S], seq 3934453911, win 65535, options [mss 1460,nop,nop,sackOK], length 0
I'm having a problem when I try to connect to my apache2 server from any client in my network using the .local address with the firewall on. I opened the port 5353 UDP but I still can't connect. The only way I can connect is disabling the firewall which I don't like to do on the server. What I'm doing wrong?
Sounds a bit odd but I'll try explain.My files I want to use in my apache folder now tell me I dont have permission to access them. When I change the permissions again, they just go back to blocked again.
I have a host system which is running Ubuntu and a guest system which is running Debian_squeeze on qemu VM. I need to send created traffic from Ubunto to Apache2 web server which is running on Debian. I made a bridge, and I can access internet from Debian, but this access is limited! I can just open some URLs not all of them! My question is how I can access the webserver from ubuntu?
I happened to be looking at my Apache-2.2.8 log on an Ubuntu LTS 8.04.4 system, and noticed a few lines like this: Code: 184.108.40.206 - - [06/Mar/2010:07:04:41 -0800] "GET http://220.127.116.11/ HTTP/1.1" 200 295 "-" "-" 18.104.22.168 - - [06/Mar/2010:07:05:29 -0800] "GET http://22.214.171.124/ HTTP/1.1" 200 295 "-" "-" xxx.xxx.xxx.xxx - - [06/Mar/2010:07:56:15 -0800] "GET http://126.96.36.199/ HTTP/1.1" 400 290 "-" "-"
(The third line is me telnetting to the server and trying to issue the same request. Note that I got a 400 error response, while the guy coming from 188.8.131.52 got 200s. Also, if you just open the http://184.108.40.206/ URL, you get back "hello" (nothing else, just 5 characters). I'm presently putting together a bootable CD with chkrootkit to run on the machine. (I found a thread that mentioned in passing that this was related to PHP, which I have running on that Apache server, but my Google-fu isn't strong enough to track down the original thread.) (After checking with chkrootkit: nothing unusual found.)
I'm trying to set up a small Intranet system to run OpenERP or similar using browser-based clients. I have an Ubuntu machine running 10.04 desktop edition to act as a temporary/testing server until we set up a proper, dedicated machine with 10.04 server edition. I have installed Apache2 from the repos and it is up and running fine - locally. That is the problem, I can't access the server from other machines on the LAN. Ping works, btw. So I've been reading tutorials and howtos for the past week, but for the life of me, I can't find what I'm doing wrong. The standard Apache setup seems to be made to "just work", so although I've looked at the various configuration files mentioned in the tutorials, I haven't actually changed anything.
I have recently installed a LAMP server on Ubuntu 10.4 nd I would like to have the /var/www folder writeable and accessible by my other computers on the LAN. I know I have to install Samba but how do I configure it so I can map network drives to the WWW folder and allow read and write access?
I have a Name-based virtualhost website in Apache, what i want to do is to disable direct ip access to the site and allow only through web address (www.mysite.com, and not through xxx.xxx.xxx.xxx). Or at least show a default page / not found page
I presume this can be acomplished with Mod_Rewrite and .htaccess but i just wanted to know if there is a more global option for this
I have googled this a lot but i can only find posts related to ip host restriction rules, which is not what i want
I have web server apache on linux Centos. I can access it successfully by typing on the address bar http://localhost, 127.0.0.1 or 192.168.0.150 from the local computer server and the site loads normally with graphic. When I access the site from another computer in the same local network, I don't get the correct website. I see the site like html as text not graphic. Please see below text file output from the browser: Also I can only access the site by typing 192.168.0.150 IP address in the address bar. When I type http://localhost or 127.0.0.1, the site does not come up. Do you see what I did wrong? How can I fix this problem.
i have already configured a domain in my server. now i have configured multiple local ip addresses,can i configure a domain for each local ip address. is it possible. if possible how can i access the web page through apache.Because already i am accessing the web page for a pre-configured domain from the path /var/www. if i able to create new domain.From where the apache fetches that index.html file, when requested through browser.
I can connect to anything locally, I can SSH in locally but nothing works from outside my network (can't access pages in apache, can SSH, etc.) I've checked the logs I can think of, but what should I be looking for? The last thing I did today was add a FW rule to log and drop from an IP, saved my iptables to a file in /etc. (this was at 10:45am). The last time I successfully logged in remotely 1:03pm. I connected multiple times in between. I've rebooted remotely once or twice. That's it. I've already flushed iptables.
I am getting this error whenever I access the page:
Code: PHP Warning: fgets(): supplied argument is not a valid stream resource Any idea whats all about? I explored and found it permission issue. I want to put a user call paul in apache group.Any idea how can I do that?