Forum OpenACS Q&A: Failure to connect to AOLServer from another PC
from the RPM's provided by Jonathan Marsden, all installed on RedHat
7.1. After an initial glitch the installation proceeded smoothly. I am
able to connect and modify the OpenACS installation from the local
machine operating on port 8000. I have made a Wimpy Point
presentation, added bulletin boards and items. In fact I have played
with just about all the modules through the main admin page. Only a
few glitches noted here and there...My problem, I cannot get any other
machine to connect and display the initial logon page. My local
machine will not connect using "localhost:8000", but does connect with
it's own name "saturn:8000". From another machine I am able to ping
the AOLServer machine successfully. The service IS up and running. I
am posting this messsage from the AOLServer laptop, so I am assuming
the network settings are fine. AOLServer is NOT serving the pages to a
remote client. I am at a loss to explain what is happening here, while
I am not new to Linux, I am new to the Redhat 7.1 version, with 5.2
being the last version I have any real experience with...
Thanks for your time...
addresses, hostnames, /etc/hosts entries, and DNs entries. Right?
I made this config item default to the host name because that is what
works for the huge majority of cases -- if you have no host name at
all the RH default is localhost.localdomain or some such thing, which
/etc/hosts says is 127.0.0.1, so even that degenerate case was taken
I'm unclear why a server machine would have a hostname of 'saturn' in
todays Internetworked world -- surely it would be more like
'saturn.somedomain.com' or whatever?
I'd go as far as to suggest that rather than haing your AOLserver
config point to the raw IP address (will you remember that when you
relocate the server in six months time?), it would be more appropriate
to ensure your DNS setup for the server is correct and matches the
hostname of the machine concerned.
As far as I can tell, what you have found is really a workaround for
inconsistent or missing domain name service... am I right?
As far as I can tell, what you have found is really a workaround for inconsistent or missing domain name service... am I right?
Yes Jonathan, putting raw IP addresses in the config file like Walter originally suggested made a perfect workaround when my DNS config wasn't fit for fight and I wanted to reach the dev box from several local machines. I suggest that you keep the present default config settings in the RPM's you make...
The only thing is now that I have a working DNS (and have changed the hostname param to a proper name) I, once again, can't connect to my site (http://infogettable.net, please visit and play a game of backgammon!) from any host other than the web server itself!
This is due to (me thinks, because I read someting about it in the IP-Masquerading HOWTO) all of my (2) hosts beeing on the same network behind my IP-Chains/IP-Masquerading firewall.
Would this be fixed if I set up a DMZ (de-militarized zone) and put the web server on it? I mean, would I then be able to connect to my site from the other network or LAN?
I must say, I love the RPM installation, and will be having more questions as I get into the ACS more. Thanks all for your help in getting me moving along.
time you move a notebook! It is to use common standard services to
ensure you don't have to do that.
If you have 5000 employees, you probably have the resources to
implement split horizon DNS and integrate that with your DHCP servers,
so that as you move that notebook around it is given a new internal IP
address and then both internal and external DNS get modified to make
the server relocation 100% invisible to both internal and external
users, who continue to use the same FQDN for it as before.
In other words, solving this once properly will solve it not just for
that one machine, but for all machines in your enterprise.
This is not really an OpenACS issue, or even a Linux issue. Step back
and improve the underlying network architecture, rather than relying
on ad hoc workarounds.
I totally agree with you, but in the WAN I operate in, I am but a small cog on the far edges of the network. I am in a field office of a much larger organization (WAN) that stretches from Singapore to Brussels with many stops in between. I'm using my laptop as a proof of concept for office managers in one small part of the WAN. If they decide to go ahead with a test implementation, then a true server with a FQDN and DNS registration will be installed at our regional hub in Atlanta and serve just the needs of the southeast for 12 months or so. Based on need or success of the pilot implementation, the system (OPENACS) will then be moved to the center of the WAN and will be made available to all on the WAN.
Your post about "split horizon DNS" intrigues me though. As I'm not an Administrator at the Domain level, I'll research the concept and then float it up to the Domain Admins in OKC.
Thanks for your valuable input and of course for the RPM packages...I've successfully installed them on 4 seperate machines with minimal problems so far...
I saw the original thread and made the config file change and am able to get the server using the internal network address, from another machine, but not from the outside world. I am pretty sure my problem is either with my RH firewall config, since I cannot get to SSH (installed using Gilbert Wong's excellent instructions at http://www.orchardlabs.com/articles/home.acs ) from the outside world either. I can from my other computer here on the internal network.
I'm pretty sure that the problem is not my router config because I fired up AOLserver 3.2 on my win 98 box and am able to get to it from the outside world.
I think that only leaves me with the firewall... which is the default, set for high, but allowing holes for SSH & WWW.
I think my next step is to backup my firewall settings and then delete them all and see if it works then.
Anyone else experienced with RH 7.1 have a suggestion?