cannot access virtual website

  • andyase
  • 10/08/09
  • Offline
Posted: Thu, 2009-10-08 07:00

Hi all

I have installed the latest centos and virtualmin, everthing went great. My default website uses the default server ip address (from external range) and all works fine. I added 3 extra IP addresses in the server templates file, I then added a virtual server using a virtual inteface which picked up an unused IP address. details as below.

IP address 93...* (Private to this server) Virtual interface Remove now
Keep interface eth0:1

External IP address Same as real address (93...*) ---same as above

I use zoneedit for nameservers and have added both the domains exactly the same.

I can connect to the first domain name and IP address okay. I cannot connect to the second domain name with the virtual interface.

Anyone know what I need to change/do.

Thanks Andy


So, the first IP address

  • andreychek
  • 01/05/09
  • Offline
  • Thu, 2009-10-08 09:20

So, the first IP address works fine -- that's great.

If you attempt to connect to your server via the second IP address (ignoring the domain name for a moment), does that much work?

That is, if you just browse to:

http://your_second_ip_address

Does a website of some sort show up?

-Eric


Hi, thanks for the replyIf

  • andyase
  • 10/08/09
  • Offline
  • Thu, 2009-10-08 09:44

Hi, thanks for the reply

If I type the IP address in I eventually get a no response message.

The following error was encountered:

•Connection to 93...* Failed The system returned:

(110) Connection timed out

Just for information:

I have 4 public ip addresses, my adsl router is in bridge mode, I use 1 ip for my pc this works fine, another IP is on the linux box i can use this as a shared IP for domains okay. The next 2 IP's are for alloction on the Linux box.

Andy


Can you ping your original

  • arjones85
  • 04/18/09
  • Offline
  • Thu, 2009-10-08 09:51

Can you ping your original IP? If you can, can you ping your other IP?

If not, do you have a firewall of sorts that you can turn off to verify it is not a firewall issue?


From ssh on my pc i can ping

  • andyase
  • 10/08/09
  • Offline
  • Thu, 2009-10-08 12:50

From ssh on my pc i can ping all ip's. I got a friend to ping and got this below:

93...3 - no response - PC=okay 93...4 - average 60ms - linux box centos/virtualmin first install=okay 93...5 - no response - first server with virtual interface ?????????

Thanks Andy


You have a firewall

  • arjones85
  • 04/18/09
  • Offline
  • Thu, 2009-10-08 16:49

You have a firewall issue.

Like I mentioned before, ensure you have no firewalls enabled on your server.


Hi I have looked at the

  • andyase
  • 10/08/09
  • Offline
  • Fri, 2009-10-09 07:47

Hi I have looked at the firewall

I used "service ip tables stop" to test with no firewall (correct me if i have used wrong command) still nothing.

I installed nmap as advised in another post to test firewall. The default linux box IP shows ports open, the virtual ethernet port ip address shows this message:

Nmap done: 1 IP address (0 hosts up)

If i use virtualmin to access the server i can "review" the website - could it be the adsl router? the mac address of the server lan card was set to pass through to http in the router.

Thanks Andy


Hi Andy, Can you post the

  • andreychek
  • 01/05/09
  • Offline
  • Fri, 2009-10-09 09:02

Hi Andy,

Can you post the output of this command:

/sbin/iptables -L -n


Hi andreychek, here is the

  • andyase
  • 10/08/09
  • Offline
  • Fri, 2009-10-09 09:06

Hi andreychek, here is the result. Andy

Chain INPUT (policy ACCEPT) target prot opt source destination ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:53 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:53 ACCEPT udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:67 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:67

Chain FORWARD (policy ACCEPT) target prot opt source destination ACCEPT all -- 0.0.0.0/0 192.168.122.0/24 state RELATED,ESTAB LISHED ACCEPT all -- 192.168.122.0/24 0.0.0.0/0 ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-po rt-unreachable REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-po rt-unreachable

Chain OUTPUT (policy ACCEPT) target prot opt source destination


Added a screen shot as the

  • andyase
  • 10/08/09
  • Offline
  • Fri, 2009-10-09 09:11

Added a screen shot as the copy paste is a little disjointed.

Andy


Yeah, it doesn't look like

  • andreychek
  • 01/05/09
  • Offline
  • Fri, 2009-10-09 10:22

Yeah, it doesn't look like there's any firewall running on your server.

Can we go over the exact symptoms your seeing again?

From what I understand, your server has multiple IP's.

The first IP works fine.

The second IP you can ping, but the website doesn't come up?

What happens if you browse to that second IP in your web browser?

Also, if you go to intodns.com, and enter some of your domain names, does it show the DNS as being okay?

If that doesn't help, you might consider temporarily listing the domain name and IP address here that's giving you trouble, as well as one of the ones that's working, so we can be of more assistance.

You can always edit your post and remove it once things are working.

-Eric


Hi I have 4 public ip

  • andyase
  • 10/08/09
  • Offline
  • Fri, 2009-10-09 11:50

Hi

I have 4 public ip address. My adsl router is in bridge mode - 1 ip assigned to router, 1 to pc, 1 to server build (linux) (this ip for shared domains) and 1 for virtual eth0:1(linux) this has 1 domain.

From inside house I can access everthing, from another location all except the eth0:1 ip address.

Been to intodns.com all seems fine.

Domain is santa-post.com, ip 93.97.23.5.

93.97.23.4 is the main server ip.

Thanks Andy


Your message there said 0

  • arjones85
  • 04/18/09
  • Offline
  • Fri, 2009-10-09 12:45

Your message there said 0 hosts up.

What is the message that is shown if you type "ifup eth0" ?


It goes back to command

  • andyase
  • 10/08/09
  • Offline
  • Fri, 2009-10-09 12:57

It goes back to command prompt , no message


May be getting somewhere.

  • andyase
  • 10/08/09
  • Offline
  • Mon, 2009-10-12 03:34

May be getting somewhere. After trying the command "ifup eth0" I thought I would try "ifup eth0:1" which is the virtual port that’s not working, and it worked I can now see the website from outside my internal network...

1) why could I see the website from internal network but not external until I ran this command?

2) When I add a virtual port do i have to edit some file to make the command ifup permanent.

Thanks

Andy


Same Problem

  • krysg
  • 11/02/09
  • Offline
  • Mon, 2009-11-02 15:57

Phew! I though I was the only one having this problem!. It seems that every 'virtual ip adress' I use isnt activated at boot time, even though I've told it too. Any ideas, becuase apart from this glitch I love VirtualMin