View Single Post
  #3  
Old 15th April 2013, 12:36
danhansen@denmark danhansen@denmark is offline
HowtoForge Supporter
 
Join Date: Mar 2013
Posts: 230
Thanks: 51
Thanked 5 Times in 5 Posts
Exclamation netstat -tap & iptables -L comming up...

---------------------------------------------------------------------------------------------
Internet Service Information:
Internet Line/Used only for Internet-Servers.
Static/Fixed public IP
All ports opened in router --> "ispserverip"
Primary nameserver --> ns1.mynameserver.tld
Secondary nameserver --> ns2.somedanishdomainservice.tld

System Information:
Ubuntu Server 12.04 (upgraded - do-release-upgrade)
ISPconfig 3 v.3.0.5.2
Single Server Setup (running primary nameserver)
Tutorial: The Perfect Server - ISPConfig3 - Ubuntu Server 10.04
Downloaded Manual for ISPConfig3 by Falko Timme
---------------------------------------------------------------------------------------------


Hi Till,

Thank you for helping me o)

Here's the to output's you requested:

netstat -tap
Code:
root@server1:/home/administrator# netstat -tap
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name
tcp        0      0 localhost:10024         *:*                     LISTEN      1198/amavisd (maste
tcp        0      0 localhost:10025         *:*                     LISTEN      2156/master
tcp        0      0 *:mysql                 *:*                     LISTEN      1052/mysqld
tcp        0      0 localhost:spamd         *:*                     LISTEN      1328/spamd.pid
tcp        0      0 *:http-alt              *:*                     LISTEN      3448/apache2
tcp        0      0 *:http                  *:*                     LISTEN      3448/apache2
tcp        0      0 *:tproxy                *:*                     LISTEN      3448/apache2
tcp        0      0 *:8082                  *:*                     LISTEN      3448/apache2
tcp        0      0 *:ftp                   *:*                     LISTEN      11946/pure-ftpd (SE
tcp        0      0 server1.mydomain2.:domain *:*                     LISTEN      1039/named
tcp        0      0 localhost:domain        *:*                     LISTEN      1039/named
tcp        0      0 *:ssh                   *:*                     LISTEN      824/sshd
tcp        0      0 *:smtp                  *:*                     LISTEN      2156/master
tcp        0      0 localhost:953           *:*                     LISTEN      1039/named
tcp        0      0 *:https                 *:*                     LISTEN      3448/apache2
tcp        0      0 localhost:http          localhost:49841         TIME_WAIT   -
tcp        0      0 localhost:http          localhost:49849         TIME_WAIT   -
tcp        0      0 localhost:mysql         localhost:43638         ESTABLISHED 1052/mysqld
tcp        0      0 localhost:45382         localhost:mysql         ESTABLISHED 28046/proxymap
tcp        0      0 localhost:mysql         localhost:45382         ESTABLISHED 1052/mysqld
tcp        0      0 localhost:45380         localhost:mysql         ESTABLISHED 28046/proxymap
tcp        0      0 localhost:mysql         localhost:45381         ESTABLISHED 1052/mysqld
tcp        0      0 localhost:mysql         localhost:45377         ESTABLISHED 1052/mysqld
tcp        0      0 localhost:45381         localhost:mysql         ESTABLISHED 28046/proxymap
tcp        0      0 localhost:43535         localhost:mysql         ESTABLISHED 23762/amavisd (ch10
tcp        0      0 localhost:45377         localhost:mysql         ESTABLISHED 28046/proxymap
tcp        0      0 localhost:mysql         localhost:43535         ESTABLISHED 1052/mysqld
tcp        0      0 localhost:47330         localhost:10025         TIME_WAIT   -
tcp        0      0 localhost:mysql         localhost:45380         ESTABLISHED 1052/mysqld
tcp        0    748 server1.mydomain2.dk:ssh  192.168.1.11:60220      ESTABLISHED 2165/sshd: administ
tcp        0      0 localhost:43638         localhost:mysql         ESTABLISHED 24001/amavisd (ch9-
tcp6       0      0 [::]:pop3               [::]:*                  LISTEN      2017/couriertcpd
tcp6       0      0 [::]:imap2              [::]:*                  LISTEN      1967/couriertcpd
tcp6       0      0 [::]:ftp                [::]:*                  LISTEN      11946/pure-ftpd (SE
tcp6       0      0 [::]:domain             [::]:*                  LISTEN      1039/named
tcp6       0      0 [::]:ssh                [::]:*                  LISTEN      824/sshd
tcp6       0      0 [::]:smtp               [::]:*                  LISTEN      2156/master
tcp6       0      0 localhost:953           [::]:*                  LISTEN      1039/named
tcp6       0      0 [::]:imaps              [::]:*                  LISTEN      1995/couriertcpd
tcp6       0      0 [::]:pop3s              [::]:*                  LISTEN      2045/couriertcpd
tcp6       0      0 localhost:33431         localhost:ftp           TIME_WAIT   -
tcp6       0      0 localhost:33439         localhost:ftp           TIME_WAIT   -
You have new mail in /var/mail/root
root@server1:/home/administrator#
iptables -L
Code:
root@server1:/home/administrator# iptables -L
Chain INPUT (policy DROP)
target     prot opt source               destination
fail2ban-ssh  tcp  --  anywhere             anywhere             multiport dports ssh
DROP       tcp  --  anywhere             127.0.0.0/8
ACCEPT     all  --  anywhere             anywhere             state RELATED,ESTABLISHED
ACCEPT     all  --  anywhere             anywhere
DROP       all  --  base-address.mcast.net/4  anywhere
PUB_IN     all  --  anywhere             anywhere
PUB_IN     all  --  anywhere             anywhere
PUB_IN     all  --  anywhere             anywhere
PUB_IN     all  --  anywhere             anywhere
PUB_IN     all  --  anywhere             anywhere
DROP       all  --  anywhere             anywhere

Chain FORWARD (policy DROP)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere             state RELATED,ESTABLISHED
DROP       all  --  anywhere             anywhere

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination
PUB_OUT    all  --  anywhere             anywhere
PUB_OUT    all  --  anywhere             anywhere
PUB_OUT    all  --  anywhere             anywhere
PUB_OUT    all  --  anywhere             anywhere
PUB_OUT    all  --  anywhere             anywhere

Chain INT_IN (0 references)
target     prot opt source               destination
ACCEPT     icmp --  anywhere             anywhere
DROP       all  --  anywhere             anywhere

Chain INT_OUT (0 references)
target     prot opt source               destination
ACCEPT     icmp --  anywhere             anywhere
ACCEPT     all  --  anywhere             anywhere

Chain PAROLE (16 references)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere

Chain PUB_IN (5 references)
target     prot opt source               destination
ACCEPT     icmp --  anywhere             anywhere             icmp destination-unreachable
ACCEPT     icmp --  anywhere             anywhere             icmp echo-reply
ACCEPT     icmp --  anywhere             anywhere             icmp time-exceeded
ACCEPT     icmp --  anywhere             anywhere             icmp echo-request
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:ftp-data
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:ftp
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:ssh
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:smtp
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:domain
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:http
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:pop3
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:imap2
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:https
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:imaps
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:pop3s
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:mysql
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:http-alt
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:tproxy
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:8082
PAROLE     tcp  --  anywhere             anywhere             tcp dpt:webmin
ACCEPT     udp  --  anywhere             anywhere             udp dpt:domain
ACCEPT     udp  --  anywhere             anywhere             udp dpt:mysql
DROP       icmp --  anywhere             anywhere
DROP       all  --  anywhere             anywhere

Chain PUB_OUT (5 references)
target     prot opt source               destination
ACCEPT     all  --  anywhere             anywhere

Chain fail2ban-ssh (1 references)
target     prot opt source               destination
RETURN     all  --  anywhere             anywhere
You have new mail in /var/mail/root
root@server1:/home/administrator#
There is one thing I think I need to inform you about. I get this "error" in "System > Server Config > Mail":

Please specify valid RBL hostnames."

Its just that in the manual we are told only to use RBL if:

Relayhost: If you want to relay outgoing mails through another mailserver (for example, because your
server is on a dynamic IP and therefore blacklisted)


This is not the case!?!


Looking forward to hear from you

Kind Regards,
Dan

Last edited by danhansen@denmark; 15th April 2013 at 12:51. Reason: Forgot important issue!
Reply With Quote