Voilà les résultats
stem@P35-DS3R:~$ ping stemy.me
PING stemy.me (80.67.181.213) 56(84) bytes of data.
From vpn.neutrinet.be (80.67.181.3) icmp_seq=1 Time to live exceeded
From vpn.neutrinet.be (80.67.181.3) icmp_seq=2 Time to live exceeded
From vpn.neutrinet.be (80.67.181.3) icmp_seq=3 Time to live exceeded
From vpn.neutrinet.be (80.67.181.3) icmp_seq=4 Time to live exceeded
^C
--- stemy.me ping statistics ---
4 packets transmitted, 0 received, +4 errors, 100% packet loss, time 3001ms
stem@P35-DS3R:~$
127.0.1.1 olinux
127.0.1.1 olinux
127.0.1.1 olinux
127.0.1.1 olinux
127.0.1.1 olinux
127.0.1.1 olinux
127.0.0.1 localhost
::1 localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
root@stemy:~# netstat -ltunp
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:5269 0.0.0.0:* LISTEN 1044/lua5.1
tcp 0 0 0.0.0.0:53 0.0.0.0:* LISTEN 754/dnsmasq
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN 640/sshd
tcp 0 0 127.0.0.1:5432 0.0.0.0:* LISTEN 399/postgres
tcp 0 0 127.0.0.1:61209 0.0.0.0:* LISTEN 724/python3
tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN 1738/master
tcp 0 0 0.0.0.0:443 0.0.0.0:* LISTEN 1073/nginx: master
tcp 0 0 0.0.0.0:4190 0.0.0.0:* LISTEN 1401/dovecot
tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN 1401/dovecot
tcp 0 0 127.0.0.1:6787 0.0.0.0:* LISTEN 562/python
tcp 0 0 127.0.0.1:11332 0.0.0.0:* LISTEN 997/rspamd: main pr
tcp 0 0 127.0.0.1:11333 0.0.0.0:* LISTEN 997/rspamd: main pr
tcp 0 0 0.0.0.0:389 0.0.0.0:* LISTEN 823/slapd
tcp 0 0 192.168.1.6:5349 0.0.0.0:* LISTEN 621/turnserver
tcp 0 0 127.0.0.1:5349 0.0.0.0:* LISTEN 621/turnserver
tcp 0 0 192.168.1.6:5349 0.0.0.0:* LISTEN 621/turnserver
tcp 0 0 127.0.0.1:5349 0.0.0.0:* LISTEN 621/turnserver
tcp 0 0 127.0.0.1:11334 0.0.0.0:* LISTEN 997/rspamd: main pr
tcp 0 0 0.0.0.0:5222 0.0.0.0:* LISTEN 1044/lua5.1
tcp 0 0 192.168.1.6:5350 0.0.0.0:* LISTEN 621/turnserver
tcp 0 0 127.0.0.1:5350 0.0.0.0:* LISTEN 621/turnserver
tcp 0 0 192.168.1.6:5350 0.0.0.0:* LISTEN 621/turnserver
tcp 0 0 127.0.0.1:5350 0.0.0.0:* LISTEN 621/turnserver
tcp 0 0 127.0.0.1:5766 0.0.0.0:* LISTEN 621/turnserver
tcp 0 0 127.0.0.1:9001 0.0.0.0:* LISTEN 633/node
tcp 0 0 127.0.0.1:5290 0.0.0.0:* LISTEN 1044/lua5.1
tcp 0 0 0.0.0.0:587 0.0.0.0:* LISTEN 1738/master
tcp 0 0 127.0.0.1:6379 0.0.0.0:* LISTEN 646/redis-server 12
tcp 0 0 127.0.0.1:5582 0.0.0.0:* LISTEN 1044/lua5.1
tcp 0 0 0.0.0.0:143 0.0.0.0:* LISTEN 1401/dovecot
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN 1073/nginx: master
tcp6 0 0 :::5269 :::* LISTEN 1044/lua5.1
tcp6 0 0 :::53 :::* LISTEN 754/dnsmasq
tcp6 0 0 :::22 :::* LISTEN 640/sshd
tcp6 0 0 ::1:5432 :::* LISTEN 399/postgres
tcp6 0 0 :::25 :::* LISTEN 1738/master
tcp6 0 0 :::443 :::* LISTEN 1073/nginx: master
tcp6 0 0 :::4190 :::* LISTEN 1401/dovecot
tcp6 0 0 :::993 :::* LISTEN 1401/dovecot
tcp6 0 0 ::1:11332 :::* LISTEN 997/rspamd: main pr
tcp6 0 0 ::1:11333 :::* LISTEN 997/rspamd: main pr
tcp6 0 0 :::389 :::* LISTEN 823/slapd
tcp6 0 0 ::1:5349 :::* LISTEN 621/turnserver
tcp6 0 0 ::1:5349 :::* LISTEN 621/turnserver
tcp6 0 0 ::1:11334 :::* LISTEN 997/rspamd: main pr
tcp6 0 0 :::5222 :::* LISTEN 1044/lua5.1
tcp6 0 0 ::1:5350 :::* LISTEN 621/turnserver
tcp6 0 0 ::1:5350 :::* LISTEN 621/turnserver
tcp6 0 0 :::3306 :::* LISTEN 892/mysqld
tcp6 0 0 ::1:5290 :::* LISTEN 1044/lua5.1
tcp6 0 0 :::587 :::* LISTEN 1738/master
tcp6 0 0 ::1:5582 :::* LISTEN 1044/lua5.1
tcp6 0 0 :::143 :::* LISTEN 1401/dovecot
tcp6 0 0 :::80 :::* LISTEN 1073/nginx: master
udp 0 0 192.168.1.6:5349 0.0.0.0:* 621/turnserver
udp 0 0 192.168.1.6:5349 0.0.0.0:* 621/turnserver
udp 0 0 127.0.0.1:5349 0.0.0.0:* 621/turnserver
udp 0 0 127.0.0.1:5349 0.0.0.0:* 621/turnserver
udp 0 0 192.168.1.6:5350 0.0.0.0:* 621/turnserver
udp 0 0 192.168.1.6:5350 0.0.0.0:* 621/turnserver
udp 0 0 127.0.0.1:5350 0.0.0.0:* 621/turnserver
udp 0 0 127.0.0.1:5350 0.0.0.0:* 621/turnserver
udp 0 0 0.0.0.0:5353 0.0.0.0:* 314/avahi-daemon: r
udp 0 0 0.0.0.0:34041 0.0.0.0:* 17053/host
udp 0 0 0.0.0.0:53 0.0.0.0:* 754/dnsmasq
udp 0 0 0.0.0.0:68 0.0.0.0:* 483/dhclient
udp 0 0 0.0.0.0:36490 0.0.0.0:* 314/avahi-daemon: r
udp6 0 0 ::1:5349 :::* 621/turnserver
udp6 0 0 ::1:5349 :::* 621/turnserver
udp6 0 0 ::1:5350 :::* 621/turnserver
udp6 0 0 ::1:5350 :::* 621/turnserver
udp6 0 0 :::5353 :::* 314/avahi-daemon: r
udp6 0 0 :::60149 :::* 314/avahi-daemon: r
udp6 0 0 :::53 :::* 754/dnsmasq
root@stemy:~#
De l’extérieur, aucun port n’est accessible.
root@stemy:~# curl https://localhost/yunohost/sso
curl: (60) SSL certificate problem: unable to get local issuer certificate
More details here: https://curl.haxx.se/docs/sslcerts.html
curl performs SSL certificate verification by default, using a "bundle"
of Certificate Authority (CA) public keys (CA certs). If the default
bundle file isn't adequate, you can specify an alternate file
using the --cacert option.
If this HTTPS server uses a certificate signed by a CA represented in
the bundle, the certificate verification probably failed due to a
problem with the certificate (it might be expired, or the name might
not match the domain name in the URL).
If you'd like to turn off curl's verification of the certificate, use
the -k (or --insecure) option.
root@stemy:~# curl -k https://localhost/yunohost/sso
<html>
<head><title>302 Found</title></head>
<body bgcolor="white">
<center><h1>302 Found</h1></center>
<hr><center>nginx</center>
</body>
</html>
root@stemy:~#
Voilà