###前提・実現したいこと
apacheを表示したいです。
###該当のソースコード
問題はポートを開けていないことだと思うのですが、
うまく設定できず、もがいています。
【iptables -Lコマンドで表示】
Chain INPUT (policy DROP) target prot opt source destination ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT icmp -- anywhere anywhere ACCEPT all -- anywhere anywhere ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh REJECT all -- anywhere anywhere reject-with icmp-host-prohibited DROP tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,PSH,ACK,URG/NONE DROP tcp -- anywhere anywhere tcp flags:!FIN,SYN,RST,ACK/SYN state NEW DROP tcp -- anywhere anywhere tcp flags:FIN,SYN,RST,PSH,ACK,URG/FIN,SYN,RST,PSH,ACK,URG ACCEPT all -- anywhere anywhere ACCEPT icmp -- anywhere anywhere ACCEPT tcp -- anywhere anywhere tcp dpt:ssh ACCEPT tcp -- anywhere anywhere tcp dpt:https Chain FORWARD (policy ACCEPT) target prot opt source destination REJECT all -- anywhere anywhere reject-with icmp-host-prohibited Chain OUTPUT (policy ACCEPT) target prot opt source destination
【/etc/sysconfig/iptables】
# Generated by iptables-save v1.4.7 on Thu Jan 19 15:53:11 2017 *filter :INPUT DROP [0:0] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [10:1128] -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT -A INPUT -p icmp -j ACCEPT -A INPUT -i lo -j ACCEPT -A INPUT -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT -A INPUT -j REJECT --reject-with icmp-host-prohibited -A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG NONE -j DROP -A INPUT -p tcp -m tcp ! --tcp-flags FIN,SYN,RST,ACK SYN -m state --state NEW -j DROP -A INPUT -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG FIN,SYN,RST,PSH,ACK,URG -j DROP -A INPUT -i lo -j ACCEPT -A INPUT -p icmp -j ACCEPT -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT -A INPUT -p tcp -m tcp --dport 443 -j ACCEPT -A FORWARD -j REJECT --reject-with icmp-host-prohibited COMMI-A INPUT -i lo -j ACCEPT -A INPUT -p icmp -j ACCEPT -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT -A INPUT -p tcp -m tcp --dport 61203 -j ACCEPT -A FORWARD -j REJECT --reject-with icmp-host-prohibited COMMIT # Completed on Thu Jan 19 15:53:11 2017
###追加
①vim /etc/sysconfig/iptables
・・・・ -A INPUT -p tcp -m tcp --dport 22 -j ACCEPT -A INPUT -p tcp -m tcp --dport 80 -j ACCEPT★★ -A INPUT -p tcp -m tcp --dport 443 -j ACCEPT -A FORWARD -j REJECT --reject-with icmp-host-prohibited ・・・・
②service iptables restart
iptables: Setting chains to policy ACCEPT: filter [ OK ] iptables: Flushing firewall rules: [ OK ] iptables: Unloading modules: [ OK ] iptables: Applying firewall rules: [ OK ]
【ps -ef | grep httpコマンドの返答】
root 1405 1 0 15:45 ? 00:00:00 /usr/sbin/httpd apache 1411 1405 0 15:45 ? 00:00:00 /usr/sbin/httpd apache 1412 1405 0 15:45 ? 00:00:00 /usr/sbin/httpd apache 1414 1405 0 15:45 ? 00:00:00 /usr/sbin/httpd apache 1416 1405 0 15:45 ? 00:00:00 /usr/sbin/httpd apache 1417 1405 0 15:45 ? 00:00:00 /usr/sbin/httpd apache 1418 1405 0 15:45 ? 00:00:00 /usr/sbin/httpd apache 1419 1405 0 15:45 ? 00:00:00 /usr/sbin/httpd apache 1420 1405 0 15:45 ? 00:00:00 /usr/sbin/httpd root 2027 1477 0 17:53 ttyS0 00:00:00 grep http
【netstat -na | grep LISTENコマンドの返答】
tcp 0 0 0.0.0.0:61203 0.0.0.0:* LIST EN tcp 0 0 127.0.0.1:25 0.0.0.0:* LIST EN tcp 0 0 :::80 :::* LIST EN tcp 0 0 :::61203 :::* LIST EN tcp 0 0 ::1:25 :::* LIST EN unix 2 [ ACC ] STREAM LISTENING 9871 private/defer unix 2 [ ACC ] STREAM LISTENING 9875 private/trace unix 2 [ ACC ] STREAM LISTENING 9879 private/verify unix 2 [ ACC ] STREAM LISTENING 9883 public/flush unix 2 [ ACC ] STREAM LISTENING 9887 private/proxymap unix 2 [ ACC ] STREAM LISTENING 9891 private/proxywrite unix 2 [ ACC ] STREAM LISTENING 9895 private/smtp unix 2 [ ACC ] STREAM LISTENING 9899 private/relay unix 2 [ ACC ] STREAM LISTENING 9903 public/showq unix 2 [ ACC ] STREAM LISTENING 9907 private/error unix 2 [ ACC ] STREAM LISTENING 9911 private/retry unix 2 [ ACC ] STREAM LISTENING 9915 private/discard unix 2 [ ACC ] STREAM LISTENING 9919 private/local unix 2 [ ACC ] STREAM LISTENING 9923 private/virtual unix 2 [ ACC ] STREAM LISTENING 9927 private/lmtp unix 2 [ ACC ] STREAM LISTENING 9931 private/anvil unix 2 [ ACC ] STREAM LISTENING 9935 private/scache unix 2 [ ACC ] STREAM LISTENING 10056 /var/run/fail2ban/fail2 ban.sock unix 2 [ ACC ] STREAM LISTENING 7279 @/com/ubuntu/upstart unix 2 [ ACC ] STREAM LISTENING 9469 /var/run/acpid.socket unix 2 [ ACC ] STREAM LISTENING 9852 public/cleanup
【エラーログ(less /var/log/httpd/error_log)】
[Thu Jan 19 11:37:29 2017] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin /suexec) [Thu Jan 19 11:37:29 2017] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin /suexec) [Thu Jan 19 11:37:29 2017] [notice] Digest: generating secret for digest authent ication ... [Thu Jan 19 11:37:29 2017] [notice] Digest: done [Thu Jan 19 11:37:29 2017] [notice] Apache/2.2.15 (Unix) DAV/2 configured -- res uming normal operations [Thu Jan 19 12:08:57 2017] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin /suexec) [Thu Jan 19 12:08:57 2017] [notice] Digest: generating secret for digest authent ication ... [Thu Jan 19 12:08:57 2017] [notice] Digest: done [Thu Jan 19 12:08:57 2017] [notice] Apache/2.2.15 (Unix) DAV/2 configured -- res uming normal operations [Thu Jan 19 15:38:25 2017] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin /suexec) [Thu Jan 19 15:38:25 2017] [notice] Digest: generating secret for digest authent ication ... [Thu Jan 19 15:38:25 2017] [notice] Digest: done [Thu Jan 19 15:38:25 2017] [notice] Apache/2.2.15 (Unix) DAV/2 configured -- res uming normal operations [Thu Jan 19 15:45:43 2017] [notice] suEXEC mechanism enabled (wrapper: /usr/sbin /suexec) /var/log/httpd/error_log
###補足情報
・CentOS release 6.8 (Final)
・さくらのVPS
※関係ないかもしれませんが、まず最初の段階ではapacheは表示されていました。
次に無料のドメインを取得し、ネームサーバーに登録しました。
ここで、設定がよくわからなくなってしまったので、OSの再インストールをしました。
そして、ガイドにしたがい初期設定を行い今に至るといった感じです。
回答7件
あなたの回答
tips
プレビュー