Ping a Specific Port

Question

Gabriel Petrovay

Asked: 2014-10-03 01:33:24 +0800 CST2014-10-03 01:33:24 +0800 CST 2014-10-03 01:33:24 +0800 CST

Cannot curl from the same server when it has PREROUTING ip forwarding

772

I have a Ubuntu web server that uses iptables PREROUTING to forward port 80 to 8000.

So the web process listens on port 8000. Now I want to make a curl from the same server to a web application running on it. But this issues a Connection refused:

$ curl http://my.webite.com/on/same/server
curl: (7) Failed connect to my.webite.com:80; Connection refused

curl-ing on port 8000 works (but it must work on port 80).

I also made sure that that web server listens on all interfaces (not only on the physical one):

$ netstat -ntl | grep LISTEN
...
tcp        0      0 0.0.0.0:8000            0.0.0.0:*               LISTEN
...

The domain of my app (my.webite.com) also resolves to the physical interface IP.

Why do I get the Connection refused?

1 Answers

Voted

Gene · Answer 1 · 2014-10-03T01:51:38+08:00

Best Answer

Gene

2014-10-03T01:51:38+08:002014-10-03T01:51:38+08:00

The PREROUTING chain doesn't apply to local (loopback) traffic. You will need a redirect rule in the OUTPUT chain for it to work on the local system.

For example:

iptables -t nat -A OUTPUT -i lo -p tcp --dport 80 -j REDIRECT --to-port 8000

2

Cannot curl from the same server when it has PREROUTING ip forwarding

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?