port forwarding on v5.6 update4

Jay Rentmeester

port forwarding on v5.6 update4

« on: May 06, 2003, 09:35:45 AM »

Please help,

I can forward all ports but port 80. I keep getting the primary i-bay html page. I have Daryl May's e-smith-packetfilter-1.13.0-04.noarch.rpm 32 2/20/2003 9:45 pm For SME5.6 and
e-smith-portforwarding-0.1.0-20.noarch.rpm 14 2/20/2003 9:45 pm For SME5.6 installed.

Any help is appreceated!!!!

Jay

Logged

Bill Talcott

Re: port forwarding on v5.6 update4

« Reply #1 on: May 06, 2003, 05:55:14 PM »

Port Forwarding is designed only to work on unused ports. It won't work for 80.

Logged

Jay Rentmeester

Re: port forwarding on v5.6 update4

« Reply #2 on: May 06, 2003, 06:19:37 PM »

Bill, ok, how do I impliment publishing a MS website behind the SME Server then? (details)

Thanks in advance!

Logged

Bill Talcott

Re: port forwarding on v5.6 update4

« Reply #3 on: May 06, 2003, 06:23:51 PM »

I think ProxyPass does that, but I have no experience with this sort of configuration.

Logged

Ruthy Camden

Port forwarding and VNC security

« Reply #4 on: May 06, 2003, 11:48:07 PM »

I'm using v5.6u4 as my gateway and I've installed the port forwarding contrib. It's working fine. Remote VNC connections are forwarded to a NT machine in the LAN and a normal password window is displayed.

For added security, I want the gateway to accept VNC only from a specific WAN public IP address. Currently, it accepts VNC connections from any machine (which leaves it open to bruteforce attacks.)

Is it possible to specify that the gateway forwards only when VNC is coming from a specific IP?

Regards,
Ruthy

Logged

Jay Rentmeester

Re: Port forwarding and VNC security

« Reply #5 on: May 07, 2003, 12:38:03 AM »

I am able to forward all ports other than port 80. I need to forward Web traffic on port 80 to my Microsoft IIS Server which publishes our website.

Has anyone done this?Ruthy Camden wrote:
>
> I'm using v5.6u4 as my gateway and I've installed the port
> forwarding contrib. It's working fine. Remote VNC connections
> are forwarded to a NT machine in the LAN and a normal
> password window is displayed.
>
> For added security, I want the gateway to accept VNC only
> from a specific WAN public IP address. Currently, it accepts
> VNC connections from any machine (which leaves it open to
> bruteforce attacks.)
>
> Is it possible to specify that the gateway forwards only when
> VNC is coming from a specific IP?
>
> Regards,
> Ruthy

Logged

Bill Talcott

Re: Port forwarding and VNC security

« Reply #6 on: May 07, 2003, 12:45:57 AM »

Ruthy Camden wrote:
>
> I'm using v5.6u4 as my gateway and I've installed the port
> forwarding contrib. It's working fine. Remote VNC connections
> are forwarded to a NT machine in the LAN and a normal
> password window is displayed.
>
> For added security, I want the gateway to accept VNC only
> from a specific WAN public IP address. Currently, it accepts
> VNC connections from any machine (which leaves it open to
> bruteforce attacks.)
>
> Is it possible to specify that the gateway forwards only when
> VNC is coming from a specific IP?
>
> Regards,
> Ruthy

It's possible to do this with a "source address" option in the firewall rules, but there's not a web interface for doing that. You'd just have to dig into the command line stuff...

Logged

Boris

Re: Port forwarding and VNC security

« Reply #7 on: May 07, 2003, 01:33:01 AM »

Try ProxyPass updated by Abe Loveless
http://tech-geeks.org/contrib/loveless/beta/proxypass/
It does work well on SME 5.6 and let you forward http:// URL to internal webserver.
We use it successfuly.

Logged