Код: Выделить всё
root@serv:/usr/local/etc/apache24 # tcpdump -vvv -n -e -i lo0 '( dst host 172.22.22.1 and src host 172.22.22.1 )'
tcpdump: listening on lo0, link-type NULL (BSD loopback), capture size 65535 bytes
03:10:15.984209 AF IPv4 (2), length 64: (tos 0x0, ttl 255, id 3738, offset 0, flags [DF], proto TCP (6), length 60, bad cksum 0 (->e8f2)!)
172.22.22.1.26258 > 172.22.22.1.443: Flags [S], cksum 0x845d (incorrect -> 0x0a0c), seq 1471206217, win 65535, options [mss 16344,nop,wscale 11,sackOK,TS val 98363001 ecr 0], length 0
03:10:15.984242 AF IPv4 (2), length 64: (tos 0x0, ttl 64, id 3739, offset 0, flags [DF], proto TCP (6), length 60, bad cksum 0 (->a7f2)!)
172.22.22.1.443 > 172.22.22.1.26258: Flags [S.], cksum 0x845d (incorrect -> 0x8ebd), seq 2167338367, ack 1471206218, win 65535, options [mss 16344,nop,wscale 11,sackOK,TS val 35127927 ecr 98363001], length 0
03:10:15.984259 AF IPv4 (2), length 56: (tos 0x0, ttl 255, id 3740, offset 0, flags [DF], proto TCP (6), length 52, bad cksum 0 (->e8f8)!)
172.22.22.1.26258 > 172.22.22.1.443: Flags [.], cksum 0x8455 (incorrect -> 0xf78a), seq 1, ack 1, win 39, options [nop,nop,TS val 98363001 ecr 35127927], length 0
03:10:15.984281 AF IPv4 (2), length 56: (tos 0x0, ttl 255, id 3741, offset 0, flags [DF], proto TCP (6), length 52, bad cksum 0 (->e8f7)!)
172.22.22.1.26258 > 172.22.22.1.443: Flags [R.], cksum 0x8455 (incorrect -> 0xf786), seq 1, ack 1, win 39, options [nop,nop,TS val 98363001 ecr 35127927], length 0
03:10:40.206399 AF IPv4 (2), length 64: (tos 0x0, ttl 255, id 4072, offset 0, flags [DF], proto TCP (6), length 60, bad cksum 0 (->e7a4)!)
172.22.22.1.34896 > 172.22.22.1.443: Flags [S], cksum 0x845d (incorrect -> 0xb2a2), seq 1182579594, win 65535, options [mss 16344,nop,wscale 11,sackOK,TS val 98387223 ecr 0], length 0
03:10:40.206431 AF IPv4 (2), length 64: (tos 0x0, ttl 64, id 4073, offset 0, flags [DF], proto TCP (6), length 60, bad cksum 0 (->a6a4)!)
172.22.22.1.443 > 172.22.22.1.34896: Flags [S.], cksum 0x845d (incorrect -> 0x0357), seq 1040925120, ack 1182579595, win 65535, options [mss 16344,nop,wscale 11,sackOK,TS val 1108012388 ecr 98387223], length 0
03:10:40.206447 AF IPv4 (2), length 56: (tos 0x0, ttl 255, id 4074, offset 0, flags [DF], proto TCP (6), length 52, bad cksum 0 (->e7aa)!)
172.22.22.1.34896 > 172.22.22.1.443: Flags [.], cksum 0x8455 (incorrect -> 0x6c24), seq 1, ack 1, win 39, options [nop,nop,TS val 98387223 ecr 1108012388], length 0
03:10:40.206468 AF IPv4 (2), length 56: (tos 0x0, ttl 255, id 4075, offset 0, flags [DF], proto TCP (6), length 52, bad cksum 0 (->e7a9)!)
172.22.22.1.34896 > 172.22.22.1.443: Flags [R.], cksum 0x8455 (incorrect -> 0x6c20), seq 1, ack 1, win 39, options [nop,nop,TS val 98387223 ecr 1108012388], length 0
Код: Выделить всё
03:11:34.159003 AF IPv4 (2), length 64: (tos 0x0, ttl 255, id 4987, offset 0, flags [DF], proto TCP (6), length 60, bad cksum 0 (->e411)!)
172.22.22.1.41310 > 172.22.22.1.443: Flags [S], cksum 0x845d (incorrect -> 0x60e0), seq 1483411342, win 65535, options [mss 16344,nop,wscale 11,sackOK,TS val 98441176 ecr 0], length 0
03:11:34.159067 AF IPv4 (2), length 64: (tos 0x0, ttl 64, id 60746, offset 0, flags [DF], proto TCP (6), length 60)
172.22.22.1.443 > 172.22.22.1.41310: Flags [S.], cksum 0x845d (incorrect -> 0x9838), seq 2876641109, ack 1483411343, win 65535, options [mss 1460,nop,wscale 11,sackOK,TS val 3688852495 ecr 98441176], length 0
03:11:34.159081 AF IPv4 (2), length 44: (tos 0x10, ttl 64, id 4989, offset 0, flags [DF], proto TCP (6), length 40, bad cksum 0 (->a314)!)
172.22.22.1.41310 > 172.22.22.1.443: Flags [R.], cksum 0x65c1 (correct), seq 1, ack 1, win 0, length 0
03:11:35.167277 AF IPv4 (2), length 64: (tos 0x0, ttl 255, id 5020, offset 0, flags [DF], proto TCP (6), length 60, bad cksum 0 (->e3f0)!)
172.22.22.1.42601 > 172.22.22.1.443: Flags [S], cksum 0x845d (incorrect -> 0x2ae8), seq 2025921588, win 65535, options [mss 16344,nop,wscale 11,sackOK,TS val 98442185 ecr 0], length 0
03:11:35.167304 AF IPv4 (2), length 64: (tos 0x0, ttl 64, id 43601, offset 0, flags [DF], proto TCP (6), length 60)
172.22.22.1.443 > 172.22.22.1.42601: Flags [S.], cksum 0x845d (incorrect -> 0xe126), seq 1657782172, ack 2025921589, win 65535, options [mss 1460,nop,wscale 11,sackOK,TS val 28925871 ecr 98442185], length 0
03:11:35.167319 AF IPv4 (2), length 44: (tos 0x10, ttl 64, id 5022, offset 0, flags [DF], proto TCP (6), length 40, bad cksum 0 (->a2f3)!)
172.22.22.1.42601 > 172.22.22.1.443: Flags [R.], cksum 0xcc19 (correct), seq 1, ack 1, win 0, length 0
03:11:37.164755 AF IPv4 (2), length 64: (tos 0x0, ttl 64, id 20971, offset 0, flags [DF], proto TCP (6), length 60)
172.22.22.1.443 > 172.22.22.1.41310: Flags [S.], cksum 0x845d (incorrect -> 0x9838), seq 2876641109, ack 1483411343, win 65535, options [mss 1460,nop,wscale 11,sackOK,TS val 3688852495 ecr 98441176], length 0
03:11:37.164772 AF IPv4 (2), length 44: (tos 0x10, ttl 64, id 5039, offset 0, flags [DF], proto TCP (6), length 40, bad cksum 0 (->a2e2)!)
172.22.22.1.41310 > 172.22.22.1.443: Flags [R.], cksum 0x65c1 (correct), seq 1, ack 1, win 0, length 0
03:11:38.172053 AF IPv4 (2), length 64: (tos 0x0, ttl 64, id 38569, offset 0, flags [DF], proto TCP (6), length 60)
172.22.22.1.443 > 172.22.22.1.42601: Flags [S.], cksum 0x845d (incorrect -> 0xe126), seq 1657782172, ack 2025921589, win 65535, options [mss 1460,nop,wscale 11,sackOK,TS val 28925871 ecr 98442185], length 0
03:11:38.172074 AF IPv4 (2), length 44: (tos 0x10, ttl 64, id 5055, offset 0, flags [DF], proto TCP (6), length 40, bad cksum 0 (->a2d2)!)
172.22.22.1.42601 > 172.22.22.1.443: Flags [R.], cksum 0xcc19 (correct), seq 1, ack 1, win 0, length 0
03:11:40.175047 AF IPv4 (2), length 64: (tos 0x0, ttl 64, id 53133, offset 0, flags [DF], proto TCP (6), length 60)
172.22.22.1.443 > 172.22.22.1.41310: Flags [S.], cksum 0x845d (incorrect -> 0x9838), seq 2876641109, ack 1483411343, win 65535, options [mss 1460,nop,wscale 11,sackOK,TS val 3688852495 ecr 98441176], length 0
03:11:40.175062 AF IPv4 (2), length 44: (tos 0x10, ttl 64, id 5095, offset 0, flags [DF], proto TCP (6), length 40, bad cksum 0 (->a2aa)!)
172.22.22.1.41310 > 172.22.22.1.443: Flags [R.], cksum 0x65c1 (correct), seq 1, ack 1, win 0, length 0
03:11:41.171856 AF IPv4 (2), length 64: (tos 0x0, ttl 64, id 59033, offset 0, flags [DF], proto TCP (6), length 60)
172.22.22.1.443 > 172.22.22.1.42601: Flags [S.], cksum 0x845d (incorrect -> 0xe126), seq 1657782172, ack 2025921589, win 65535, options [mss 1460,nop,wscale 11,sackOK,TS val 28925871 ecr 98442185], length 0
03:11:41.171871 AF IPv4 (2), length 44: (tos 0x10, ttl 64, id 5109, offset 0, flags [DF], proto TCP (6), length 40, bad cksum 0 (->a29c)!)
172.22.22.1.42601 > 172.22.22.1.443: Flags [R.], cksum 0xcc19 (correct), seq 1, ack 1, win 0, length 0
03:11:43.194803 AF IPv4 (2), length 64: (tos 0x0, ttl 64, id 17299, offset 0, flags [DF], proto TCP (6), length 60)
172.22.22.1.443 > 172.22.22.1.41310: Flags [S.], cksum 0x845d (incorrect -> 0x9838), seq 2876641109, ack 1483411343, win 65535, options [mss 1460,nop,wscale 11,sackOK,TS val 3688852495 ecr 98441176], length 0
03:11:43.194824 AF IPv4 (2), length 44: (tos 0x10, ttl 64, id 5130, offset 0, flags [DF], proto TCP (6), length 40, bad cksum 0 (->a287)!)
172.22.22.1.41310 > 172.22.22.1.443: Flags [R.], cksum 0x65c1 (correct), seq 1, ack 1, win 0, length 0
03:11:44.181044 AF IPv4 (2), length 64: (tos 0x0, ttl 64, id 30616, offset 0, flags [DF], proto TCP (6), length 60)
172.22.22.1.443 > 172.22.22.1.42601: Flags [S.], cksum 0x845d (incorrect -> 0xe126), seq 1657782172, ack 2025921589, win 65535, options [mss 1460,nop,wscale 11,sackOK,TS val 28925871 ecr 98442185], length 0
03:11:44.181057 AF IPv4 (2), length 44: (tos 0x10, ttl 64, id 5143, offset 0, flags [DF], proto TCP (6), length 40, bad cksum 0 (->a27a)!)
172.22.22.1.42601 > 172.22.22.1.443: Flags [R.], cksum 0xcc19 (correct), seq 1, ack 1, win 0, length 0
1. Другие тачки из сетки 172.22.22.0/24 с апачем работают нормально (для них порт открыт и апач возвращает страницы).
2. При сканировании нмапом на локалхост (127.0.0.1) порт апача открыт (что в принципе логично т.к. установлена опция set skip lo0)
Все. Отбой мужики, как и ожидалось - я тупанул) но ковырялся до поста тут уже N дней... а может и с неделю.
Когдато я добавлял себе дополнительную табилицу маршрутизации и была необходимость, чтобы апач работал в рамках именно той таблицы маршрутизации, собственно в чем и заключалась проблема:
Всем спасибо.