Keep Server Online
If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.
or
A donation makes a contribution towards the costs, the time and effort that's going in this site and building.
Thank You! Steffen
Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
| |
|
 Topic: Apache 2.2.4 Conection Issues |
|
| Author |
|
PCJunkie
Joined: 10 Jan 2007
Posts: 8
|
 Posted: Fri 23 Feb '07 15:00 Post subject: Apache 2.2.4 Conection Issues |
 |
|
Hey guys, I ahve posted this before and didn't get a response. Yet I'll reask it as it is a bit different problem than before.
First off my site is http://nickspublicrealm.com
I had determined that my ISP blocks port 80 so I changed my forewarding port to 60080, as well as my listening port in apache and on my firewalls. I can see my web site over a dial-up ISP via my PDA, Over my network (Obviously), and from 2 friends houses. However, I can not see it from work. I work for a large corporation who likes to block all kinds of keywords with websense and such, but, my server isn't being blocked, it's getting a can not find error. If I Run/Cmd ping www.nickspublicrealm.com at work though, it will sucessfully ping and return my IP.
I'm lost for posible causes. It's not a big deal that I can't see it from work but rather, if I can't see it from work than where else is it not available?
Does anyone have any suggestions? Also, can you see my site from your locations? Thanks guys! |
|
| Back to top |
|
tdonovan
Moderator
Joined: 17 Dec 2005
Posts: 611
Location: Milford, MA, USA
|
| Posted: Fri 23 Feb '07 16:18 Post subject: |
|
|
Perhaps a lower port number will help. The three catagories of port numbers are:Well Known Ports: 0 - 1023
Registered Ports: 1024 - 49151
Dynamic/Private Ports: 49152 - 65535 Maybe the Dynamic/Private ports are being blocked by your employer.
Try a port in the Registered range (like port 8080), or even one from the Well Known range which is not commonly used (like port 81).
Another possibility is using SSL. The https port (port 443) is often unblocked even when your ISP blocks port 80.
-tom- |
|
| Back to top |
|
PCJunkie
Joined: 10 Jan 2007
Posts: 8
|
| Posted: Fri 23 Feb '07 16:28 Post subject: |
|
|
Thank you Tom, I will try switching ports around. I never knew that ports had different categories, and now that I think about it, it sounds like a very good possibility.
Now, I haven't done anything with https as of yet. If I switch to port 443, does this make my site secure all on it's own? Or am I reading your reply wrong? |
|
| Back to top |
|
James Blond
Moderator
Joined: 19 Jan 2006
Posts: 7371
Location: Germany, Next to Hamburg
|
| Posted: Fri 23 Feb '07 16:58 Post subject: |
|
|
| Nope! Only switching the port does not make it secure. Only installing SSL on Apache makes it more secure. |
|
| Back to top |
|
PCJunkie
Joined: 10 Jan 2007
Posts: 8
|
| Posted: Sat 24 Feb '07 4:48 Post subject: |
|
|
UPDATE...
I change my port a few times and finally settled on port 81. I used canyouseeme.com to see if the ports were being blocked through my isp and through work and both places have port 81 open. So the port is no longer the issue if it was before. I am guessing that work probably will not accept sites without a certificate?
I downloaded the 2.2.4 server built with openssl that is on apache lounge here and successfully installed it as per the instructions included in the download.
Now I need to create a certificate. As I understand so far, I should have a file on my server somewhere called openssl.cnf? I do not have it. Every site I look at that explains openssl and apache on windows xp sais something completely different. Can you guys help me out with this or link me to a how to that is going to work for me? |
|
| Back to top |
|
tdonovan
Moderator
Joined: 17 Dec 2005
Posts: 611
Location: Milford, MA, USA
|
| Posted: Sat 24 Feb '07 18:04 Post subject: |
|
|
hmmmm... your problem may be a bit more complex than it first appeared.
It looks like you go through a dynamic DNS service - DynDNS.
When you request http://nickspublicrealm.com the request really goes to DynDNS
- which creates a browser frame and directs the frame to be filled from port 81 at your current IP address.
In your browser menu, choose [View] [Page Source] and you will see something like ths: | Quote: | <frameset>
<frame src="http://66.227.243.118:81/" name="redir_frame" /> |
You might try accessing http://66.227.243.118:81/ directly from work, in case it is DynDNS that your company is blocking rather than specific ports on your machine.
Using SSL with this setup might not work.
The config file you are looking for is in \conf\openssl.cnf. Windows Explorer mis-identifies .cnf files as SpeedDial files; but openssl.cnf is really a text file.
You can create your own self-signed 10-year SSL certificate in the Apache \bin directory with: | Quote: | | openssl req -new -x509 -nodes -config ..\conf\openssl.cnf -days 3650 -out ..\conf\server.crt -keyout ..\conf\server.key -extensions v3_req |
OpenSSL will prompt you for additional information.
Your response to the Common Name prompt is important. It must match the name in the https request.
It is not clear whether you should set the Common Name to nickspublicrealm.com, or to 66.227.243.118 because DynDNS redirects by IP number instead of by name.
Good luck! Pls let us know how it goes.
-tom- |
|
| Back to top |
|
PCJunkie
Joined: 10 Jan 2007
Posts: 8
|
| Posted: Sun 25 Feb '07 7:02 Post subject: |
|
|
Ok, I finally got the connection issue all cleared up. It seems that here at work we are using a proxy server. It was a simple matter of bypassing the proxy in IE6 tools.
Now onto finished ssl. Thanks for the info. Unfortunately I have to wait to get home in the morning to do it. You guys are great!!!! |
|
| Back to top |
|
|
|
|
|
|
