Httpd нет подключения с других машин. Куда копать?

Question

[s_pyanov]

Имеется:
1.fedora 21
2. был установлен httpd
3. отключен фаервол
4. настроен виртуальный хост
5. подключение по ip с машины на котором установлен веб-сервер проходит (в моем случае ввожу ip 192.168.1.67) - получаю текст из index.html
6. Пытаюсь подключиться с других машин - подключение не проходит(выходи время ожидания).
7. Логи сайта ничего не пишут о попытках подключения.

Listen 192.168.1.67:80

Include conf.modules.d/*.conf

User apache
Group apache

ServerAdmin root@localhost

<Directory />
    AllowOverride none
    Require all denied
</Directory>


DocumentRoot "/var/www/html"


<Directory "/var/www">
    AllowOverride None
    # Allow open access:
    Require all granted
</Directory>


<Directory "/var/www/html">
     Options Indexes FollowSymLinks
    AllowOverride None
    Require all granted
</Directory>

<IfModule dir_module>
    DirectoryIndex index.html
</IfModule>


<Files ".ht*">
    Require all denied
</Files>


ErrorLog "logs/error_log"

LogLevel warn

<IfModule log_config_module>
    LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
    LogFormat "%h %l %u %t \"%r\" %>s %b" common
    <IfModule logio_module>
      LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
    </IfModule>
    CustomLog "logs/access_log" combined
</IfModule>

<IfModule alias_module>
    ScriptAlias /cgi-bin/ "/var/www/cgi-bin/"
</IfModule>


AddDefaultCharset UTF-8

EnableSendfile on

IncludeOptional conf.d/*.conf

<VirtualHost *>
#электронная почта администратора
        ServerAdmin admin@localhost
#путь к директории хоста
        DocumentRoot /var/www/html
#имя хоста
        ServerName localhost.localdomain
#псевдоним хоста
#        ServerAlias www.site1.ru
#путь к логам ошибок хоста
        ErrorLog /var/www/logs/error_log_error_log
#путь к общим логам хоста
        CustomLog /var/www/logs/log_host_log common
</VirtualHost>

информация о виртуальном хосте грузится из файла vhost.conf который лежит в /etc/httpd/conf.d/

<VirtualHost *:80> 
     ServerAdmin webmaster@example.com
     ServerName example.com
     ServerAlias www.example.com
     DocumentRoot /var/www/example.com/public_html/
     ErrorLog /var/www/example.com/logs/error.log 
     CustomLog /var/www/example.com/logs/access.log combined
</VirtualHost>

все директории созданы, права назначены 777(пока тестируется).

netstat выдает это

Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name    
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      860/sshd            
tcp        0      0 127.0.0.1:631           0.0.0.0:*               LISTEN      1646/cupsd          
tcp        0      0 0.0.0.0:17500           0.0.0.0:*               LISTEN      1987/dropbox        
tcp        0      0 127.0.0.1:17600         0.0.0.0:*               LISTEN      1987/dropbox        
tcp        0      0 127.0.0.1:17603         0.0.0.0:*               LISTEN      1987/dropbox        
tcp        0      0 192.168.1.67:80         0.0.0.0:*               LISTEN      3255/httpd          
tcp        0      0 192.168.122.1:53        0.0.0.0:*               LISTEN      1257/dnsmasq        
tcp6       0      0 :::22                   :::*                    LISTEN      860/sshd            
tcp6       0      0 ::1:631                 :::*                    LISTEN      1646/cupsd          
tcp6       0      0 :::3306                 :::*                    LISTEN      1367/mysqld         
udp        0      0 0.0.0.0:3017            0.0.0.0:*                           1532/dhclient       
udp        0      0 192.168.122.1:53        0.0.0.0:*                           1257/dnsmasq        
udp        0      0 0.0.0.0:67              0.0.0.0:*                           1257/dnsmasq        
udp        0      0 0.0.0.0:68              0.0.0.0:*                           1532/dhclient       
udp        0      0 0.0.0.0:123             0.0.0.0:*                           674/chronyd         
udp        0      0 127.0.0.1:323           0.0.0.0:*                           674/chronyd         
udp        0      0 0.0.0.0:17500           0.0.0.0:*                           1987/dropbox        
udp        0      0 0.0.0.0:5353            0.0.0.0:*                           2470/chrome         
udp        0      0 0.0.0.0:5353            0.0.0.0:*                           664/avahi-daemon: r 
udp        0      0 0.0.0.0:46860           0.0.0.0:*                           664/avahi-daemon: r 
udp6       0      0 :::24453                :::*                                1532/dhclient       
udp6       0      0 :::123                  :::*                                674/chronyd         
udp6       0      0 ::1:323                 :::*                                674/chronyd

По всей видимости блокируется не на уровне httpd, но тогда где???

Comments

[Spetros]

Другие машины в одной подсети с вашей находятся?

Answer 1

[Denis Verbin]

iptables?

Comments

[s_pyanov]

Iptables сбросил ниже. Добавлял правило iptables -A INPUT -p tcp --dport 80 -j ACCEPT

Answer 2

[s_pyanov]

[root@localhost ~]# iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination
ACCEPT     udp  --  anywhere             anywhere             udp dpt:domain
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:domain
ACCEPT     udp  --  anywhere             anywhere             udp dpt:bootps
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:bootps
ACCEPT     all  --  anywhere             anywhere             ctstate RELATED,ESTABLISHED
ACCEPT     all  --  anywhere             anywhere
INPUT_direct  all  --  anywhere             anywhere
INPUT_ZONES_SOURCE  all  --  anywhere             anywhere
INPUT_ZONES  all  --  anywhere             anywhere
ACCEPT     icmp --  anywhere             anywhere
DROP       all  --  anywhere             anywhere             ctstate INVALID
REJECT     all  --  anywhere             anywhere             reject-with icmp-host-prohibited
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:http

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination
ACCEPT     all  --  anywhere             192.168.122.0/24     ctstate RELATED,ESTABLISHED
ACCEPT     all  --  192.168.122.0/24     anywhere
ACCEPT     all  --  anywhere             anywhere
REJECT     all  --  anywhere             anywhere             reject-with icmp-port-unreachable
REJECT     all  --  anywhere             anywhere             reject-with icmp-port-unreachable
ACCEPT     all  --  anywhere             anywhere             ctstate RELATED,ESTABLISHED
ACCEPT     all  --  anywhere             anywhere
FORWARD_direct  all  --  anywhere             anywhere
FORWARD_IN_ZONES_SOURCE  all  --  anywhere             anywhere
FORWARD_IN_ZONES  all  --  anywhere             anywhere
FORWARD_OUT_ZONES_SOURCE  all  --  anywhere             anywhere
FORWARD_OUT_ZONES  all  --  anywhere             anywhere
ACCEPT     icmp --  anywhere             anywhere
DROP       all  --  anywhere             anywhere             ctstate INVALID
REJECT     all  --  anywhere             anywhere             reject-with icmp-host-prohibited

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
ACCEPT     udp  --  anywhere             anywhere             udp dpt:bootpc
OUTPUT_direct  all  --  anywhere             anywhere

Chain FORWARD_IN_ZONES (1 references)
target     prot opt source               destination
FWDI_FedoraWorkstation  all  --  anywhere             anywhere            [goto]
FWDI_FedoraWorkstation  all  --  anywhere             anywhere            [goto]
FWDI_FedoraWorkstation  all  --  anywhere             anywhere            [goto]
FWDI_FedoraWorkstation  all  --  anywhere             anywhere            [goto]

Chain FORWARD_IN_ZONES_SOURCE (1 references)
target     prot opt source               destination

Chain FORWARD_OUT_ZONES (1 references)
target     prot opt source               destination
FWDO_FedoraWorkstation  all  --  anywhere             anywhere            [goto]
FWDO_FedoraWorkstation  all  --  anywhere             anywhere            [goto]
FWDO_FedoraWorkstation  all  --  anywhere             anywhere            [goto]
FWDO_FedoraWorkstation  all  --  anywhere             anywhere            [goto]

Chain FORWARD_OUT_ZONES_SOURCE (1 references)
target     prot opt source               destination

Chain FORWARD_direct (1 references)
target     prot opt source               destination

Chain FWDI_FedoraWorkstation (4 references)
target     prot opt source               destination
FWDI_FedoraWorkstation_log  all  --  anywhere             anywhere
FWDI_FedoraWorkstation_deny  all  --  anywhere             anywhere
FWDI_FedoraWorkstation_allow  all  --  anywhere             anywhere

Chain FWDI_FedoraWorkstation_allow (1 references)
target     prot opt source               destination

Chain FWDI_FedoraWorkstation_deny (1 references)
target     prot opt source               destination

Chain FWDI_FedoraWorkstation_log (1 references)
target     prot opt source               destination

Chain FWDO_FedoraWorkstation (4 references)
target     prot opt source               destination
FWDO_FedoraWorkstation_log  all  --  anywhere             anywhere
FWDO_FedoraWorkstation_deny  all  --  anywhere             anywhere
FWDO_FedoraWorkstation_allow  all  --  anywhere             anywhere

Chain FWDO_FedoraWorkstation_allow (1 references)
target     prot opt source               destination

Chain FWDO_FedoraWorkstation_deny (1 references)
target     prot opt source               destination

Chain FWDO_FedoraWorkstation_log (1 references)
target     prot opt source               destination

Chain INPUT_ZONES (1 references)
target     prot opt source               destination
IN_FedoraWorkstation  all  --  anywhere             anywhere            [goto]
IN_FedoraWorkstation  all  --  anywhere             anywhere            [goto]
IN_FedoraWorkstation  all  --  anywhere             anywhere            [goto]
IN_FedoraWorkstation  all  --  anywhere             anywhere            [goto]

Chain INPUT_ZONES_SOURCE (1 references)
target     prot opt source               destination

Chain INPUT_direct (1 references)
target     prot opt source               destination

Chain IN_FedoraWorkstation (4 references)
target     prot opt source               destination
IN_FedoraWorkstation_log  all  --  anywhere             anywhere
IN_FedoraWorkstation_deny  all  --  anywhere             anywhere
IN_FedoraWorkstation_allow  all  --  anywhere             anywhere

Chain IN_FedoraWorkstation_allow (1 references)
target     prot opt source               destination
ACCEPT     udp  --  anywhere             224.0.0.251          udp dpt:mdns ctstate NEW
ACCEPT     udp  --  anywhere             anywhere             udp dpt:netbios-ns ctstate NEW
ACCEPT     udp  --  anywhere             anywhere             udp dpt:netbios-dgm ctstate NEW
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:ssh ctstate NEW
ACCEPT     udp  --  anywhere             anywhere             udp dpts:blackjack:65535 ctstate NEW
ACCEPT     tcp  --  anywhere             anywhere             tcp dpts:blackjack:65535 ctstate NEW

Chain IN_FedoraWorkstation_deny (1 references)
target     prot opt source               destination

Chain IN_FedoraWorkstation_log (1 references)
target     prot opt source               destination

Chain OUTPUT_direct (1 references)
target     prot opt source               destination