503 Service Unavailable when using firewall

Ivan Martinez ivan.martinez at masterion.com
Thu Dec 8 12:12:34 CET 2011


Yes, I'm using Firewall Builder and had "lo" configured as "Unnumbered 
interface". Changed to "Static IP address" and now everything works 
fine. "Unnumbered" worked in another server, I don't know why... Thank 
you everybody and sorry for wasting your time with silly mistakes.
Ivan

> Thank you Hugo, looks like I'm blocking internal traffic:
>
> [root at server ivanmr]# varnishadm -T 127.0.0.1:6082 debug.health
> Connection failed (127.0.0.1:6082)
> [root at server ivanmr]# nmap 127.0.0.1 -p 8000
>
> Starting Nmap 5.21 ( http://nmap.org ) at 2011-12-07 18:52 UTC
> sendto in send_ip_packet: sendto(4, packet, 44, 0, 127.0.0.1, 16) =>
> Operation not permitted
> Offending packet: TCP 127.0.0.1:43982 > 127.0.0.1:8000 S ttl=52
> id=29152 iplen=44  seq=521959048 win=1024 <mss 1460>
> sendto in send_ip_packet: sendto(4, packet, 44, 0, 127.0.0.1, 16) =>
> Operation not permitted
> Offending packet: TCP 127.0.0.1:43983 > 127.0.0.1:8000 S ttl=48
> id=55619 iplen=44  seq=522024585 win=1024 <mss 1460>
> Nmap scan report for localhost (127.0.0.1)
> Host is up.
> PORT     STATE    SERVICE
> 8000/tcp filtered http-alt
>
> Nmap done: 1 IP address (1 host up) scanned in 2.07 seconds
>
> I will review my firewall configuration again... :-(
> Ivan





More information about the varnish-misc mailing list