- Posts: 15
- Thank you received: 1
Welcome to the LimeSurvey Community Forum
Ask the community, share ideas, and connect with other LimeSurvey users!
Firewall and tcpdump report problems in LimeSurvey 2.71.1+170927
- guest_666
- Topic Author
- Offline
- New Member
Less
More
6 years 4 months ago #160581
by guest_666
Firewall and tcpdump report problems in LimeSurvey 2.71.1+170927 was created by guest_666
Hi all,
I have several machine, one with limesurvey 2.71.1+170927, other with Mysql 5.x database and other with firewall. I analysed the LAN firewall and reported this problem when I will validate with admin user in LimeSurveyDatabase and after firewall reported error 504 Gateway Time-out, because can´t connect with my own database and the product will connect to some place of LimeSurvey:
root@mc:~> tcpdump -q -nn -vvv port 443 or port 80
tcpdump: listening on eth0, link-type EN10MB (Ethernet), capture size 262144 bytes
12:12:20.508267 IP (tos 0x0, ttl 64, id 62337, offset 0, flags [DF], proto TCP (6), length 60)
10.96.98.145.51104 > 46.4.84.4.80: tcp 0
12:12:21.506011 IP (tos 0x0, ttl 64, id 62338, offset 0, flags [DF], proto TCP (6), length 60)
10.96.98.145.51104 > 46.4.84.4.80: tcp 0
12:12:23.510012 IP (tos 0x0, ttl 64, id 62339, offset 0, flags [DF], proto TCP (6), length 60)
10.96.98.145.51104 > 46.4.84.4.80: tcp 0
12:12:27.518013 IP (tos 0x0, ttl 64, id 62340, offset 0, flags [DF], proto TCP (6), length 60)
10.96.98.145.51104 > 46.4.84.4.80: tcp 0
12:12:35.542035 IP (tos 0x0, ttl 64, id 62341, offset 0, flags [DF], proto TCP (6), length 60)
10.96.98.145.51104 > 46.4.84.4.80: tcp 0
12:12:51.574035 IP (tos 0x0, ttl 64, id 62342, offset 0, flags [DF], proto TCP (6), length 60)
10.96.98.145.51104 > 46.4.84.4.80: tcp 0
root@mc:~> nslookup 46.4.84.4
Server: 10.254.177.81
Address: 10.254.177.81#53
Non-authoritative answer:
4.84.4.46.in-addr.arpa name = limesurvey-3.limesurvey.org.
root@mc:~> telnet limesurvey-3.limesurvey.org 80
Trying 46.4.84.4...
Why do this?, It's necessary? It's possible any component send information? or it's a code problem?
Regards
I have several machine, one with limesurvey 2.71.1+170927, other with Mysql 5.x database and other with firewall. I analysed the LAN firewall and reported this problem when I will validate with admin user in LimeSurveyDatabase and after firewall reported error 504 Gateway Time-out, because can´t connect with my own database and the product will connect to some place of LimeSurvey:
root@mc:~> tcpdump -q -nn -vvv port 443 or port 80
tcpdump: listening on eth0, link-type EN10MB (Ethernet), capture size 262144 bytes
12:12:20.508267 IP (tos 0x0, ttl 64, id 62337, offset 0, flags [DF], proto TCP (6), length 60)
10.96.98.145.51104 > 46.4.84.4.80: tcp 0
12:12:21.506011 IP (tos 0x0, ttl 64, id 62338, offset 0, flags [DF], proto TCP (6), length 60)
10.96.98.145.51104 > 46.4.84.4.80: tcp 0
12:12:23.510012 IP (tos 0x0, ttl 64, id 62339, offset 0, flags [DF], proto TCP (6), length 60)
10.96.98.145.51104 > 46.4.84.4.80: tcp 0
12:12:27.518013 IP (tos 0x0, ttl 64, id 62340, offset 0, flags [DF], proto TCP (6), length 60)
10.96.98.145.51104 > 46.4.84.4.80: tcp 0
12:12:35.542035 IP (tos 0x0, ttl 64, id 62341, offset 0, flags [DF], proto TCP (6), length 60)
10.96.98.145.51104 > 46.4.84.4.80: tcp 0
12:12:51.574035 IP (tos 0x0, ttl 64, id 62342, offset 0, flags [DF], proto TCP (6), length 60)
10.96.98.145.51104 > 46.4.84.4.80: tcp 0
root@mc:~> nslookup 46.4.84.4
Server: 10.254.177.81
Address: 10.254.177.81#53
Non-authoritative answer:
4.84.4.46.in-addr.arpa name = limesurvey-3.limesurvey.org.
root@mc:~> telnet limesurvey-3.limesurvey.org 80
Trying 46.4.84.4...
Why do this?, It's necessary? It's possible any component send information? or it's a code problem?
Regards
The topic has been locked.
- LouisGac
- Visitor
6 years 4 months ago #160584
by LouisGac
Replied by LouisGac on topic Firewall and tcpdump report problems in LimeSurvey 2.71.1+170927
it's the comfortUpdate looking if any update is available.
It's better to let it open, so if we publish a security update you'll know it.
I guess that having a strict firewall in front of web applications with known security issues is not what you want.
It's better to let it open, so if we publish a security update you'll know it.
I guess that having a strict firewall in front of web applications with known security issues is not what you want.
The topic has been locked.
- guest_666
- Topic Author
- Offline
- New Member
Less
More
- Posts: 15
- Thank you received: 1
6 years 4 months ago #160612
by guest_666
Replied by guest_666 on topic Firewall and tcpdump report problems in LimeSurvey 2.71.1+170927
Hi LouisGac, thaks for your forward
Great, this is the problem I configured config.php, reboot Apache and it's works
I attach a image
Regards
Great, this is the problem I configured config.php, reboot Apache and it's works
I attach a image
Regards
Attachments:
The topic has been locked.