httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Rich Morin <>
Subject [users@httpd] Peculiar DNS/Apache interaction
Date Mon, 22 Jan 2007 04:57:43 GMT
I'm seeing a peculiar DNS/Apache interaction.  I hope
someone on the list can help.


I'm running my LAN behind a router (Linksys RV042) which
provides NAT and port forwarding.  Port 80 is forwarded
to a Mac Mini (Mac OS X 10.4.8), running Apache 1.3.33.

I use named (BIND 9.2.2) to provide split DNS.  Here are
some details, in case they matter:

  From the LAN, dig says:        259200  IN  A   259200  IN  A   259200  IN  A

  From the WAN, dig says:        259200  IN  A   (no answer)   259200  IN  A

My httpd.conf file (on contains:

  <VirtualHost *:80>
#   ErrorLog          /dev/null
    CustomLog         /dev/null common
    ProxyRequests     Off
    ProxyPass         /
    ProxyPassReverse  /

>From various machines on the LAN, when I try pages such as

I see the expected pages (generated by Ruby on Rails).


When I try to access from an external box,
however, I get assorted errors.  For example:

> % telnet 80

This gives me's home page, which is not what I was
hoping for.  Digging further, I get errors such as this:

> % telnet 80
> Trying
> Connected to
> Escape character is '^]'.
> GET /main/about
> <TITLE>404 Not Found</TITLE>
> <H1>Not Found</H1>
> The requested URL /main/about was not found on this server.<P>
> <HR>
> <ADDRESS>Apache/1.3.33 Server at Port 80</ADDRESS>
> </BODY></HTML>
> Connection closed by foreign host.

/var/log/httpd/error_log on confirms that its copy of
Apache was the one generating the error page:

  [...] [error] [client ...] File does not exist:

One notion I've been considering is that Apache's Proxying is
not actually sending requests to the other machine, getting
the replies, and then forwarding them to the browser.  If,
instead, it is issuing some sort of redirect, I could see why
a machine outside wouldn't be successful in following it.  If
this is the case, is there a way to cause Apache to do a real
proxy service?

However, turning on port forwarding of port 3002/TCP to fido
didn't change the responses seen by the remote system.   And,
although the remote system was able to telnet into something
that acted like an HTTP server on port 3002, when I tried a
"GET /" or a "GET /main/about", I had no luck:

> % telnet 3002
> Trying
> Connected to
> Escape character is '^]'.
> GET /main/about
> Connection closed by foreign host.

So, I'm confused.  Could someone tell me what is going on and
(more critically) how I can make things work from the WAN in
the same way they're working now on the LAN?

--            Rich Morin     +1 650-873-7841

Technical editing and writing, programming, and web development

The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message