I've got a Windows 2003 Web Server at a co-location farm with several web sites using IIS 6. A strange thing has been happening lately. Any PHP web page that uses MySQL gets this error:
Warning: mysql_connect() [function.mysql-connect]: Can't connect to MySQL server on 'localhost' (10055)
But MySQL isn't the problem. SQL Server 2005 is also on the system. Those sites (also using classic ASP) are working.
I think this is a networking issue that I just cannot begin to know where it is coming from.
At the moment I can Remote Desktop into the system. However, last time I rebooted it, any remote port port except port 80 stopped responding remotely and I had to physically go to the co-lo location and reboot. When I did that, everything worked again just fine. At the moment I cannot SSH into the system (I have Open SSH installed).
When I remote desktop into it, most networking things are blocked. For instance, I pull up Internet Explorer or Firefox and cannot go to any web site. I just get "Page cannot be displayed". However, I can ping any site on the internet just fine.
The system is behind a NAT firewall/router that I've assigned a static IP and pass through certain ports like 80 for web, 9522 for SSH, 9898 for Remote Desktop, etc. I've always been able to surf the web from that machine except for some reason I never tried to figure out - I couldn't go to any https sites (port 443).
In a browser I cannot even get to the router admin http://192.168.5.254
like I've always been able to.
Here is why I doubt it is the router though. MySQL is on the local machine. I should be able to go into MySQL administrator or just use a web site that connects to it. But no luck. Nothing can connect even locally. So it shouldn't be going through the router. Even when I do http:/127.0.0.1
in a browser I've always got the main web site to appear. But not now. I can however ping 127.0.0.1
I don't have any IPSEC firewall settings in Win 2003.
I've looked in the Event Log. Nothing jumps out at me. I get some MySQL errors and SSH server errors that probably begin once the networking starts messing up.
I have an Administrator login that happened at 4:30am that wouldn't be me or anyone I know. But maybe an automatic process (or malicious?).
I don't have any Antivirus, Norton Security, or anything like that. I ran Lavasoft Adaware and it found nothing.
This is a bit like the Windows firewall is turned on, even though it isn't turned on.