Running two servers inside network

Mon Mar 20 14:27:18 UTC 2006

On Sun, 2006-03-19 at 13:06 -0500, Ansar Mohammed wrote:

> netstat -an

Actually, my guess is:

apache TCP 80, TCP 443 (if SSL is used)
Postfix TCP 25 (possible TCP 587 and TCP 465 too)
Mailman (uses apache and postfix ports)
mambo (use apache)
DNS (UDP 53, TCP 53 (if you have an external host being secondary))
MySQL TCP 3306 (but you don't need to expose it if only the web server
uses it)

> > -----Original Message-----
> > From: owner-tlug-lxSQFCZeNF4 at public.gmane.org [mailto:owner-tlug-lxSQFCZeNF4 at public.gmane.org] On Behalf Of Robert F.
> > Kennedy
> > Sent: March 19, 2006 4:30 AM
> > To: tlug-lxSQFCZeNF4 at public.gmane.org
> > Subject: RE: [TLUG]: Running two servers inside network
> > 
> > Hi John,
> > 
> > That is a good idea, I'll change the IP instead. The reason I've used DMZ
> > is
> > that I don't know which ports are required for the various services. Is
> > there a way of finding out? I'm running Apache, Postfix, Mailman, Mambo
> > (PHP, MySQL), and DNS.
> > 
> > Thanks,
> > Robert
> > 
> > 
> > Toronto
> > 
> > -----Original Message-----
> > From: owner-tlug-lxSQFCZeNF4 at public.gmane.org [mailto:owner-tlug-lxSQFCZeNF4 at public.gmane.org] On Behalf Of
> > john-Da48MpWaEp0CzWx7n4ubxQ at public.gmane.org
> > Sent: March 18, 2006 2:32 PM
> > To: tlug-lxSQFCZeNF4 at public.gmane.org
> > Subject: Re: [TLUG]: Running two servers inside network
> > 
> > > A few weeks ago my RH9 server got infected with a virus through PHP
> > > and was doing DoS attacks on Google (a Microsoft virus perhaps) and
> > > Jason, Tim, Peter, Eric and Neil suggested that I scrap the old server
> > > and start fresh.
> > > I am just getting around to that task now. I have a new machine with
> > > CentOS installed (thanks to another TLUG member I enjoyed beer with
> > > last Tuesday night but whose name I've forgotten). This is an
> > > excellent upgrade path for someone running RH9.
> > >
> > > To test the new machine I went into my WRT54G Linksys router and
> > > changed the DMZ from 192.168.2.39 (old machine) to 192.168.2.55 (new
> > > machine). Did my testing late at night but when I set the DMZ back to
> > > the old machine it stopped working.  This gave me quite a scare
> > > because by looking at logs and so on it should have been working.
> > > Zonked I went to sleep and when I got up this morning it just started
> > > working again around 11:30AM. I have no idea why it stopped working
> > > for about ten hours but I am looking for advice on how I can switch
> > > back and forth without encountering this problem.
> > 
> > It sounds like a Linksys problem. I don't recommend using the DMZ option
> > if
> > you don't have to, this may have helped the hackers on your old system.
> > I recommend that you only open the ports that you need to. Depending on
> > your
> > firmware, this can be done in Applications and Gaming.
> > 
> > Instead of changing the firewall to point to a new IP address you can swap
> > the addresses on the servers.
> > --
> > The Toronto Linux Users Group.      Meetings: http://tlug.ss.org
> > TLUG requests: Linux topics, No HTML, wrap text below 80 columns How to
> > UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml
> > --
> > The Toronto Linux Users Group.      Meetings: http://tlug.ss.org
> > TLUG requests: Linux topics, No HTML, wrap text below 80 columns
> > How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml
> 
> --
> The Toronto Linux Users Group.      Meetings: http://tlug.ss.org
> TLUG requests: Linux topics, No HTML, wrap text below 80 columns
> How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml

-- 
John Van Ostrand
         Net Direct Inc.

Director of Technology
564 Weber St. N. Unit 12
   Waterloo, ON N2L 5C6 
 map 
john-Da48MpWaEp0CzWx7n4ubxQ at public.gmane.org
        Ph: 519-883-1172
 ext.5102
Linux Solutions / IBM
Hardware
        Fx: 519-883-8533

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://gtalug.org/pipermail/legacy/attachments/20060320/f7083dbb/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://gtalug.org/pipermail/legacy/attachments/20060320/f7083dbb/attachment.sig>