Topic: please help with native dyndns

[xavier]

native configuration dyndns server sme 7.5, the installation and configure but does not link, but you have not installed ddclient looking dyndns found some settings but leave this off and disabled, and configuration to enable and make it work properly. I hope your answer thanks

[cactus]

I would love to answer you, but I have trouble understanding what you want. Could you try and explain what your issue is again (being a bit more extensive).

It is unclear to me what your problem is, what you already did and what do you mean by:

looking dyndns found some settings but leave this off and disabled, and configuration to enable and make it work properly

[janet]

xavier

It is difficult to understand you due to poor english grammar.
Please try to phrase the description of your problem more clearly.
Please answer the following questions as clearly as possible.

Is your server in server and gateway mode or server only mode ?
Do you use a modem/router in bridged mode or do you use a standalone router which provides all services to your LAN ?

What is your dyndns domain name ?
Did you add this domain name to your server in the "Configure this server" option ?

I read your comment as being you have NOT installed ddclient and not configured it, correct ?

I think you are asking how to configure the built in dyndns client to update your dyndns account, is that correct ?

Please advise us step by step what settings you have made to your server
ie what is the main domain name
how did you configure the server please, in the "Configure this server" admin panel ?

[xavier]

sorry for the grammar I'm not very good in English and used a translator

in English
configuracion del cliente dyndns para actualizar dns!! en sme server viene instalado el cliente original pero no esta activo y no esta funcionando!!

in Spanish
configuracion del cliente dyndns para actualizar dns!! en sme server viene instalado el cliente original pero no esta activo y no esta funcionando!!


Is your server in server and gateway mode or server only mode ?
server and gateway

Do you use a modem/router in bridged mode or do you use a standalone router which provides all services to your LAN ?
router in bridged mode

What is your dyndns domain name ?
programasremotos.dyndns.org

Did you add this domain name to your server in the "Configure this server" option ?
yes
name = programasremotos
domain = dyndns.org

I read your comment as being you have NOT installed ddclient and not configured it, correct ?
yes

I think you are asking how to configure the built in dyndns client to update your dyndns account, is that correct ?
yes yes yes

Please advise us step by step what settings you have made to your server
ie what is the main domain name
how did you configure the server please, in the "Configure this server" admin panel ?

1 domain = programasremotos
2 = dyndns.org hostname
3 local ip = 192.168.1.10
4 macara = 255.255.255.0
5 function = server and gateway
6 external access mode = server and gateway "dedicated"
7 targeta network configuration = "eth1 local" and "external eth0"
8 = external interface configuration "using dhcp" "send ethernet address as client identifier"
9 dynamic dns service = ww.dyndns.org - Free Service
10 name
11 password
Dhcp server configuration 12 = "off" does not provide service to the local network dhcp
13 dns server address corporate = "" empty

I await your response.....

[johnp]

What is the ip adress of your external nic?(should be viewable from server-manager configuration, review configuration) Are you using dsl for your connection? From what I see, dyndns has a private address.

[janet]

xavier

Did you add this domain name to your server in the "Configure this server" option ?
yes
name = programasremotos
domain = dyndns.org

name = would typically be a servername which is identifiable on the local network (LAN) via samba filesharing eg server1 or server2 or a location specific name eg office1 or office2 etc

domain = would typically be the full domain name eg in your case programasremotos.dyndns.org
 

how did you configure the server please, in the "Configure this server" admin panel ?
1 domain = programasremotos
2 = dyndns.org hostname

Step 1. Please enter the primary domain name for your server. This will be the default domain for your e-mail and web server.
In your case this should be = programasremotos.dyndns.org

Step 2. Please enter the system name for your server. You should select a unique system name for each server
In your case this should be = server1 or server2 or office1 or office2 etc

3 local ip = 192.168.1.10
4 macara (subnet mask) = 255.255.255.0
5 function = server and gateway
6 external access mode = server and gateway "dedicated"

all appear OK

7 targeta network configuration = "eth1 local" and "external eth0"

OK, but usually select normal eth0 is local, eth1 is external
This choice depends on position of cables connected to NICs, swap the cables if necessary

8 = external interface configuration "using dhcp" "send ethernet address as client identifier"

OK, this will depend on your Internet conection and should be as advised by your ISP, which in your case appears to be Cable

9 dynamic dns service = ww.dyndns.org - Free Service
10 name

This should be your dyndns account login name eg mydyndnsaccountname

11 password

This should be your dyndns account login password eg mydyndnspassword

Dhcp server configuration 12 = "off" does not provide service to the local network dhcp

OK if this suits your network. Typically if your SME server is your only server on the network, then you would select = On Provide DHCP service to local network

Do you have another DHCP server on your network ? If not, you should select = On

13 dns server address corporate = "" empty[/b]

OK and usually best left empty in most situations


From the above your error seems to be that you have entered your server name and main domain name incorrectly. Perhaps also your DHCP server setting is wrong.

Run the "Configure this server" option again when logged in as admin, and correct the errors.

[xavier]

Corrections "dns not working"

Note: eth1 and eth0 local external "test runs of the internet" "work test network" with local eth0 and eth1 external "Internet test does not work" "work test network"

is disabled the client system's original dns sme server and see if it is working properly

in English
my goal is to make a server with firewall and gatewall sme server for connections from the Internet to a remote desktop server windows server behind  the server sme server
in Spanish
mi objetivo es hacer un servidor firewall y gatewall con sme server para realizar conecciones desde internet hacia un servidor de escritorio remoto con windows server detra del servodor sme server

1 domain = programasremotos.dyndns.org
2 name = servidor1
3 local ip = 192.168.1.10
4 macara = 255.255.255.0
5 function = server and gateway
6 external access mode = server and gateway "dedicated"
7 targeta network configuration = "eth1 local" and "external eth0"
8 = external interface configuration "using dhcp" "send ethernet address as client identifier"
9 dynamic dns service = ww.dyndns.org - Free Service
10 name yes
11 password yes
12 Dhcp server configuration  = "on" provide service to the local network dhcp
13 dns server address corporate = "" empty

Additional information in https://192.168.1.10/server-manager/

Review configuration
Networking Parameters
Server Mode   servergateway
Local IP address / subnet mask   192.168.1.10/255.255.255.0
External IP address / subnet mask   192.168.1.111
Additional local networks   192.168.1.0/255.255.255.0
DHCP server   enabled
Beginning of DHCP address range   192.168.1.200
End of DHCP address range   192.168.1.250
Server names
DNS server   192.168.1.10
Web server   www.programasremotos.dyndns.org
Proxy server   proxy.programasremotos.dyndns.org:3128
FTP server   ftp.programasremotos.dyndns.org
SMTP, POP, and IMAP mail servers   mail.programasremotos.dyndns.org
Domain information
Primary domain   programasremotos.dyndns.org
Virtual domains   programasremotos.dyndns.org
Primary web site   http://www.programasremotos.dyndns.org
Server manager   https://servidor1/server-manager/
User password panel   https://servidor1/user-password/
Email Addresses   useraccount@programasremotos.dyndns.org
firstname.lastname@programasremotos.dyndns.org
firstname_lastname@programasremotos.dyndns.org

I await your reply thanks...

[janet]

xavier

Does your ISP service provide a static IP or a dynamic IP ?

Go to http://www.showmyip.com/
and determine what your current external IP is.
Then go to the dyndns.com site and login to your dyndns account.
Change the IP for your domain to be the currently shown external IP at http://www.showmyip.com/

See if your web server is then accessible from the web.

External IP address / subnet mask   192.168.1.111

As johnp points out, this appears to be a local IP ???
I'm not sure what this should be for a Cable connection, but I imagine there should be a IP displayed which is in the valid public IP range.

Web server   www.programasremotos.dyndns.org

For this type of www URL to work you will need the * wildcard enabled at the dyndns site, which I believe is no longer available on free dyndns accounts. You have to pay now to get the wildcard functionality.
Otherwise just access your server using http://programasremotos.dyndns.org

Try this also. From a workstation on your LAN (behind your sme server gateway), do a port scan check at www.grc.com to see what ports are open.
Edit: Maybe your ISP is blocking ports for web & mail servers (ports 80 & 25).

[johnp]

xavier,

We really need to know what kind if internet access you currently have. Make and model of your gateway would help.

As now it appears to be doing nat to your external nic. Depending on your equipment you may have to do the dyndns updates on it and open all ports to your sme. Although is is also possible with configuration changes, it could assign the true internet ip address to your external card.

This topic should likely be moved, since it doesn't appear to be a sme issue.

[CharlieBrady]

Local IP address / subnet mask   192.168.1.10/255.255.255.0
External IP address / subnet mask   192.168.1.111

This is not a valid configuration.

[xavier]

ip external = dynamic ip

linsys wireless-n home router = converts external ip  assigned internal ip dhcp
model: WRT150N v1.1

scan nmap 192.168.1.10 sme server

Starting Nmap 5.35DC1 ( http://nmap.org ) at 2010-10-05 09:40 Hora est. del Pacífico de SA

NSE: Loaded 49 scripts for scanning.

Initiating ARP Ping Scan at 09:40

Scanning 192.168.1.10 [1 port]

Completed ARP Ping Scan at 09:40, 0.08s elapsed (1 total hosts)

Initiating Parallel DNS resolution of 1 host. at 09:40

Completed Parallel DNS resolution of 1 host. at 09:40, 1.11s elapsed

Initiating SYN Stealth Scan at 09:40

Scanning 192.168.1.10 [1000 ports]

Discovered open port 993/tcp on 192.168.1.10

Discovered open port 53/tcp on 192.168.1.10

Discovered open port 443/tcp on 192.168.1.10

Discovered open port 80/tcp on 192.168.1.10

Discovered open port 110/tcp on 192.168.1.10

Discovered open port 139/tcp on 192.168.1.10

Discovered open port 22/tcp on 192.168.1.10

Discovered open port 995/tcp on 192.168.1.10

Discovered open port 25/tcp on 192.168.1.10

Discovered open port 143/tcp on 192.168.1.10

Discovered open port 389/tcp on 192.168.1.10

Discovered open port 465/tcp on 192.168.1.10

Discovered open port 515/tcp on 192.168.1.10

Discovered open port 3128/tcp on 192.168.1.10

Discovered open port 548/tcp on 192.168.1.10

Completed SYN Stealth Scan at 09:40, 0.05s elapsed (1000 total ports)

Initiating Service scan at 09:40

[xavier]

visible link!!! thanks

ssh session configuration problem

putty configracion
1. Run PuTTY
2. In the configuration menu select the category Session
3. Enter the name of your domain or IP in the Host Name field and select the SSH protocol = programasremotos.dyndns.org   
4. port    22
5. to setup menu and select the category SSH
6. Make sure that is checked 2 in Preferred SSH protocol version
7. In the lower section Blowfish Encryption options selected and click Up
8. Session Select Session class again
9. To save the settings, press Save and Open to connect

Server configuracion
server-manager
Security
Remote access
Secure Shell Settings
You can control Secure Shell access to your server. The public setting should only be enabled by experienced administrators for remote problem diagnosis and resolution. We recommend leaving this parameter set to "No Access" unless you have a specific reason to do otherwise.
Secure shell access    allow public access (entries internet)
Allow administrative command line access over secure shell yes    
Allow secure shell access using standard passwords    yes
TCP Port for secure shell access    22

nmap

Starting Nmap 5.35DC1 ( http://nmap.org ) at 2010-10-05 11:39 Hora est. del Pacífico de SA

NSE: Loaded 49 scripts for scanning.

Initiating Ping Scan at 11:39

Scanning programasremotos.dyndns.org (186.69.249.28) [4 ports]

Completed Ping Scan at 11:39, 0.06s elapsed (1 total hosts)

Initiating Parallel DNS resolution of 1 host. at 11:39

Completed Parallel DNS resolution of 1 host. at 11:39, 0.13s elapsed

Initiating SYN Stealth Scan at 11:39

Scanning programasremotos.dyndns.org (186.69.249.28) [1000 ports]

Discovered open port 3389/tcp on 186.69.249.28

Discovered open port 80/tcp on 186.69.249.28

Completed SYN Stealth Scan at 11:39, 1.33s elapsed (1000 total ports)

Initiating Service scan at 11:39

Scanning 2 services on programasremotos.dyndns.org (186.69.249.28)

Completed Service scan at 11:40, 47.11s elapsed (2 services on 1 host)

Initiating OS detection (try #1) against programasremotos.dyndns.org (186.69.249.28)

Got nsock WRITE error #10054 (Unknown error)

Initiating Traceroute at 11:40

Completed Traceroute at 11:40, 0.01s elapsed

Initiating Parallel DNS resolution of 1 host. at 11:40

Completed Parallel DNS resolution of 1 host. at 11:40, 0.48s elapsed

NSE: Script scanning 186.69.249.28.

NSE: Starting runlevel 1 (of 1) scan.

Initiating NSE at 11:40

Completed NSE at 11:40, 0.27s elapsed

Nmap scan report for programasremotos.dyndns.org (186.69.249.28)

Host is up (0.00013s latency).

Not shown: 996 closed ports

PORT     STATE    SERVICE       VERSION

22/tcp   filtered ssh

80/tcp   open     http          Linksys WRT150N wireless-G router http config

|_html-title: 401 Unauthorized

| http-auth: HTTP Service requires authentication

|   Auth type: Basic, realm = WRT150N

|_  HTTP server may accept admin:admin combination for Basic authentication

443/tcp  filtered https

3389/tcp open     ms-term-serv?

Device type: general purpose

Running: Linux 2.4.X

OS details: Linux 2.4.18 - 2.4.35 (likely embedded)

Uptime guess: 0.060 days (since Tue Oct 05 10:14:25 2010)

Network Distance: 1 hop

TCP Sequence Prediction: Difficulty=206 (Good luck!)

IP ID Sequence Generation: All zeros

Service Info: Device: WAP



TRACEROUTE (using port 1025/tcp)

HOP RTT     ADDRESS

1   0.00 ms 186.69.249.28



Read data files from: C:\Archivos de programa\Nmap

OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .

Nmap done: 1 IP address (1 host up) scanned in 53.97 seconds

           Raw packets sent: 1032 (46.154KB) | Rcvd: 1025 (41.745KB)

portsThe 988 ports scanned but not shown below are in state: closed
Port State Service Reason Product Version Extra info
25 tcp open smtp  syn-ack qpsmtpd     
80 tcp open http  syn-ack Apache httpd     
110 tcp open pop3  syn-ack qmail pop3d     
139 tcp open netbios-ssn  syn-ack Samba smbd  3.X  workgroup: PROGRAMAS 
143 tcp open imap-proxy  syn-ack Mailfront imapfront imap proxy    with stunnel 
389 tcp open ldap  syn-ack     Anonymous bind OK 
443 tcp open http  syn-ack Apache httpd     
465 tcp open smtp  syn-ack qpsmtpd     
515 tcp open printer  syn-ack       
548 tcp open afp  syn-ack Netatalk  2  name: servidor1; protocol 3.1 
993 tcp open imaps  syn-ack       
995 tcp open pop3  syn-ack qmail pop3d     
remote operating system guessused port 25/tcp (open)
used port 1/tcp (closed)
used port 34876/udp (closed)
os match: Linux 2.6.9 - 2.6.30
accuracy: 100%
reference fingerprint line number: 27956

[johnp]

Your configuration has me confused. The way I see it is:

Internet--[Cable/DSL]UKNOWN[eth]--[WAN]WRT150N[LAN]--[eth0]SME[eth1]

The WAN on the WRT150N has 186.69.249.28 as it's current ip address the LAN value address is unknown
The WRT150N through DHCP is assigning 192.168.1.111/unknown mask to [eth0], and [eth1] has a static value of 192.168.1.10/24.

There are several things that need to be fixed and the way to best accomplish this depends on your goal.

What is the WRT150N really used for? If just wireless access, it could be converted to an access point connected to [eth1]

My preferred setup would be:

Internet--[Cable/DSL]UKNOWN[eth]--[eth0]SME[eth1]--[LAN]WRT150N

This would require turning DCHP on for the sme and off for the WRT150N, I would also make sure that the address for both resi9de on the same subnet and do not conflict with eath other or the created range

[janet]

xavier

Do you use a modem/router in bridged mode or do you use a standalone router which provides all services to your LAN ?
router in bridged mode

Is your router really in bridged mode (ie pass through all data), and have you also disabled the firewall, the DHCP server, the login client and all other functions/services in the router ?

[xavier]

la conexion funciona via ssh con ip y dns muchas gracias, I have another ploblema in port forwarding
problem in the configuration firewall and gateway

in server-manager
----------------port forwarding
----rule     
protocol  TCP
source port 3389
target host ip 192.168.1.100
destination port 3389

port is not open and is not a gateway for connection

where reviewing firewall rules, and open or closed ports
in /sbin/iptables  =  data unreadable
in /etc/rc.d/init.d/masq   = rule port forwarding not visible

in tutorial
eg to leave open some ports ie 222 & 2000-2010, block in ranges
config setprop masq TCPBlocks 0.0.0.0/0:1-221,0.0.0.0/0:223-1999,0.0.0.0/0:2011-65535

Update the config changes and restart masq
signal-event remoteaccess-update
/etc/init.d/masq restart

this rule's okay port 22 and 3389 or wrong
config setprop masq TCPBlocks 0.0.0.0/0:1-21,0.0.0.0/0:23-3388,0.0.0.0/0:3390-65535

otherwise but already exist template default or system
Create a custom template and list the IP's
mkdir -p /etc/e-smith/templates-custom/etc/rc.d/init.d/masq/
pico -w /etc/e-smith/templates-custom/etc/rc.d/init.d/masq/40DenyRiffRaff
/sbin/iptables -A INPUT -s 69.212.12.76/32 -j DROP
/sbin/iptables -A INPUT -s 88.28.215.11/32 -j DROP

expand and restart
/sbin/e-smith/expand-template /etc/rc.d/init.d/masq
/etc/init.d/masq restart

which would be a correct rule for ports 22 and 3389
help where you can review and configure firewall rules, thanks.......

[janet]

xavier

By default all incoming ports are closed except those that are required for services running on the SME server as configured in the various panels of server manager. Server manager settings control which services are enabled and therefore which ports will be open for incoming traffic.

By default all outgoing ports are open.

The port forwarding panel will both open an incoming port on the SME server and forward it to the specified internal host. You need to have a service running and the port active (open) on the internal host server. Port forwarding only works for traffic coming from an external location, you cannot port forward internal traffic.

To see what rules are set do
iptables -L

Please read the firewall FAQ again, more carefully this time so you understand what the usage is for.

The port blocking commands you refer to are for blocking outgoing ports only.
The IP blocking commands you refer to are for blocking all incoming access from an external IP, irregardless of what port they use.

If you wish to customize your SME firewall you need to create custom iptables rules using custom templates for masq. See the Templates Tutorial Howto for a starting point.
http://wiki.contribs.org/Template_Tutorial#masq
You will need to understand the use of iptables, so search google for iptables and read up.
This may help
man iptables

Note also there are many specific db commands to open ports on SME server for specific purposes, read all the wiki info on contribs.org especially the Firewall FAQ.
http://wiki.contribs.org/SME_Server:Documentation:FAQ#Firewall

[janet]

xavier

Please answer the earlier questions by johnp & myself re your router usage & current configuration settings. If you wish to use your router as a gateway and wireless access point, then you will need to configure SME differently eg setup a DMZ with a static IP pointing to your router.

[johnp]

I would highly suspect that your current sme configuration is nonfunctional. You need to address the basic topology before moving on to other issues.

Once you have that done, most of what I believe you desire is easily accomplished via the server-manager interface.

You may find that assigning fixed internal addresses to your PC's and connecting via a vpn before a RDP session may solve you needs, plus provide more benefits and security.

If you get the basics done and provide a list of desired functionality, there are many here that will assist in achieving your goals.

[xavier]

Current connection

1 internet "programsaremotos.dyndns.org" a dhcp router
2 of the router to assign dhcp sme sever  192.168.2.101
3  sme server eth0 192.168.2.101 of router
4 sme server lan internal  eth1 192.168.1.10
5 sme eth1 to swith
6 swith to pc windows with ip 192.168.1.100 "lan internal" with service Remote Desktop

smeserver binds via putty to ssh, the connection is correct

Remote Desktop is not Internet related "programasremotos.dyndns.org" to internal windows pc "the connection not correct" no connection

configuration in server-manager
----------------port forwarding
----rule     
protocol  TCP
source port 3389
target host ip 192.168.1.100
destination port 3389

no conexion, no gateway.... ayuda....

[CharlieBrady]

You have two levels of NAT between the Internet and your workstation. You either need to configure port forwarding in your router *and* your SME server, or you need to eliminate one level of NAT. You can do that by either:

- configure your router in bridging mode (or eliminate the router, and connect your SME server directly to a DSL modem).
- use your SME server in server-only mode, and configure port forwardings in your router to allow services to reach your SME server.

[xavier]

I connect via ssh "good"
does not ping 192.168.1.100 "internal windows pc"
result of nmap

Starting Nmap 5.35DC1 ( http://nmap.org ) at 2010-10-07 10:52 Hora est. del Pacífico de SA
NSE: Loaded 49 scripts for scanning.
Initiating Ping Scan at 10:52
Scanning 201.238.135.164 [4 ports]
Completed Ping Scan at 10:52, 0.16s elapsed (1 total hosts)
Initiating Parallel DNS resolution of 1 host. at 10:52
Completed Parallel DNS resolution of 1 host. at 10:52, 0.16s elapsed
Initiating SYN Stealth Scan at 10:52
Scanning 201.238.135.164 [1000 ports]
Discovered open port 22/tcp on 201.238.135.164
Completed SYN Stealth Scan at 10:53, 16.00s elapsed (1000 total ports)
Initiating Service scan at 10:53
Scanning 1 service on 201.238.135.164
Completed Service scan at 10:53, 0.22s elapsed (1 service on 1 host)
Initiating OS detection (try #1) against 201.238.135.164
Retrying OS detection (try #2) against 201.238.135.164
Initiating Traceroute at 10:53
Completed Traceroute at 10:53, 1.03s elapsed
Initiating Parallel DNS resolution of 14 hosts. at 10:53
Completed Parallel DNS resolution of 14 hosts. at 10:53, 16.50s elapsed
NSE: Script scanning 201.238.135.164.
NSE: Starting runlevel 1 (of 1) scan.
Initiating NSE at 10:53
NSE Timing: About 50.00% done; ETC: 10:54 (0:00:31 remaining)
Completed NSE at 10:53, 31.25s elapsed
Nmap scan report for 201.238.135.164
Host is up (0.12s latency).
Not shown: 999 filtered ports
PORT   STATE SERVICE VERSION
22/tcp open  ssh     OpenSSH 3.9p1 (protocol 2.0)
Warning: OSScan results may be unreliable because we could not find at least 1 open and 1 closed port
Device type: WAP
Running (JUST GUESSING) : AVM embedded (87%), Netgear embedded (87%), Linksys embedded (87%)
Aggressive OS guesses: AVM FRITZ!Box FON WLAN 7050, Linksys WAG200G, or Netgear DG834GT wireless broadband router (87%)
No exact OS matches for host (test conditions non-ideal).
Network Distance: 16 hops
TCP Sequence Prediction: Difficulty=189 (Good luck!)
IP ID Sequence Generation: All zeros
TRACEROUTE (using port 22/tcp)
HOP RTT       ADDRESS
1   16.00 ms  192.168.1.1
2   0.00 ms   186.69.248.1
3   16.00 ms  200.63.206.49
4   32.00 ms  200.63.206.2
5   141.00 ms 97.trans144.gye.satnet.net (200.25.144.97)
6   79.00 ms  84.16.10.117
7   79.00 ms  94.142.126.30
8   79.00 ms  Xe1-3-0-0-grtmiabr6.red.telefonica-wholesale.net (84.16.14.14)
9   79.00 ms  94.142.127.153
10  125.00 ms 84.16.10.58
11  141.00 ms 201.219.1.141
12  78.00 ms  201.219.0.154
13  78.00 ms  200.55.224.246
14  78.00 ms  200.55.224.246
15  78.00 ms  200.55.224.246
16  110.00 ms 201.238.135.164

Read data files from: C:\Archivos de programa\Nmap
OS and Service detection performed. Please report any incorrect results at http://nmap.org/submit/ .
Nmap done: 1 IP address (1 host up) scanned in 73.03 seconds
           Raw packets sent: 2104 (96.164KB) | Rcvd: 90 (5.144KB)

[johnp]

What ip address are you using to connect via ssh?
Have you tried from both eth0 and eth1 interfaces?
Can you ping both interfaces from the root console?
Can you ping the dhcp router's addresses from above?
Does the pc have a firewall blocking ping?

Read what Charlie said, if you intend to use current configuration something needs to happen in your router. Also if you want dyndns to update, this would have to take place there. I don't know why you are hesitant to try using the sme as your gateway/firewall.

One other thing I though of is if you are trying to access the sme lan from a device attached via wireless of wired on the wan side, you will need a static route in your dhcp router to tell it where 192.168.1.0 is something like 192.168.1.0 255.255.255.0 via 192.168.2.101

[janet]

xavier

I connect via ssh "good"
does not ping 192.168.1.100 "internal windows pc"

Keeping in mind that your network is not configured correctly.

On your workstation, go to a DOS prompt and do
ipconfig /all

Please paste the output (in full) here


Also on your server do
ifconfig
and show the full output here

[xavier]

the connection is
by (dns or ip) the router     (dns or ip)=dhcp = external ip
the router to sme server
sme server firewall gateway to internal computer with windows server 2008 "Remote Desktop Services" = "RemoteApp, only to open an application"

ipconfig /all in windows server 2008
C:\Users\Administrador>ipconfig /all

Configuración IP de Windows

   Nombre de host. . . . . . . . . : SERVER-W
   Sufijo DNS principal  . . . . . :
   Tipo de nodo. . . . . . . . . . : híbrido
   Enrutamiento IP habilitado. . . : no
   Proxy WINS habilitado . . . . . : no

Adaptador de Ethernet Conexión de área local:

   Sufijo DNS específico para la conexión. . :
   Descripción . . . . . . . . . . . . . . . : Controladora Gigabit Ethernet PCI
 88E8001/8003/8010 Marvell Yukon
   Dirección física. . . . . . . . . . . . . : 00-11-2F-E0-3C-AD
   DHCP habilitado . . . . . . . . . . . . . : no
   Configuración automática habilitada . . . : sí
   Vínculo: dirección IPv6 local. . . : fe80::592:fbdd:ae4a:1a6a%10(Preferido)
   Dirección IPv4. . . . . . . . . . . . . . : 192.168.1.100(Preferido)
   Máscara de subred . . . . . . . . . . . . : 255.255.255.0
   Puerta de enlace predeterminada . . . . . :
   Servidores DNS. . . . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS sobre TCP/IP. . . . . . . . . . . : habilitado

Adaptador de túnel Conexión de área local*:

   Estado de los medios. . . . . . . . . . . : medios desconectados
   Sufijo DNS específico para la conexión. . :
   Descripción . . . . . . . . . . . . . . . : isatap.{9F0B80AF-7B1E-4341-A978-D
E235E05D5C4}
   Dirección física. . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP habilitado . . . . . . . . . . . . . : no
   Configuración automática habilitada . . . : sí

Ping in windows server 2008
C:\Users\Administrador>ping 192.168.1.10

Haciendo ping a 192.168.1.10 con 32 bytes de datos:
Respuesta desde 192.168.1.10: bytes=32 tiempo<1m TTL=64
Respuesta desde 192.168.1.10: bytes=32 tiempo<1m TTL=64
Respuesta desde 192.168.1.10: bytes=32 tiempo<1m TTL=64
Respuesta desde 192.168.1.10: bytes=32 tiempo<1m TTL=64

Estadísticas de ping para 192.168.1.10:
    Paquetes: enviados = 4, recibidos = 4, perdidos = 0
    (0% perdidos),
Tiempos aproximados de ida y vuelta en milisegundos:
    Mínimo = 0ms, Máximo = 0ms, Media = 0ms

ifconfig in linux
[root@servidor1 ~]# ifconfig
eth0      Link encap:Ethernet  HWaddr 00:E0:7D:A8:41:28
          inet addr:192.168.2.101  Bcast:255.255.255.255  Mask:255.255.255.0
          UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
          RX packets:818 errors:0 dropped:0 overruns:0 frame:0
          TX packets:20852 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:184137 (179.8 KiB)  TX bytes:1723280 (1.6 MiB)
          Interrupt:209 Base address:0xd800

eth1      Link encap:Ethernet  HWaddr 00:40:F4:2F:5F:30
          inet addr:192.168.1.10  Bcast:192.168.1.255  Mask:255.255.255.0
          UP BROADCAST RUNNING ALLMULTI MULTICAST  MTU:1500  Metric:1
          RX packets:80 errors:0 dropped:0 overruns:0 frame:0
          TX packets:158 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:6870 (6.7 KiB)  TX bytes:16326 (15.9 KiB)
          Interrupt:217 Base address:0xd400

lo        Link encap:Local Loopback
          inet addr:127.0.0.1  Mask:255.0.0.0
          UP LOOPBACK RUNNING  MTU:16436  Metric:1
          RX packets:1641 errors:0 dropped:0 overruns:0 frame:0
          TX packets:1641 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:0
          RX bytes:173605 (169.5 KiB)  TX bytes:173605 (169.5 KiB)
Ping in linux
[root@servidor1 ~]# ping 192.168.1.100
PING 192.168.1.100 (192.168.1.100) 56(84) bytes of data.

remains and not connecting for ping

[johnp]

Puerta de enlace predeterminada (that would be default gateway) seeing as you have non...how can the pc respond to any other subnet?

In your case, it should be 192.168.1.10

[xavier]

sorry for the grammar........

dyndns domain is not updated ip the router dhcp 192.168.1.103 and not the internet
any scrip for updating the ip automatically, only works once the update last week, no longer updates
dyndns domain the connection setup to install, with the respective data is not connected.
any recommendations, thanks .......

[xavier]

note:  if the page the domain is updated,,,, only with the ip 192.168.1.103 (router ip),,not with the internet ip..........

[janet]

xavier

Does your router have a dyndns client ?
If so you need to configure the routers dyndns client to update dyndns with your dynamic IP.

If your router does not have a dyndns client, then you need to install ddclient on your sme server, and reconfigure your sme server in "server only" mode.

Read Charlies earlier post re your two options.

[xavier]

thanks ...... configuration in the router of the dyndns, operation good
connection and gateway and ssh, good!!!!!
thanks friend's...............................

[xavier]

...........................................

[johnp]

I hope you turned dyndns off on your sme. Also you should assign a static value to the wan port otherwise all your port forward settings in your router will become useless after an address change.

This statement was based on the dyndns vaules changing from 192.168.1.110 to 192.168.1.103.

I haven't read the manual for your router, but generally speaking you sould set a value outside the dhcp range to the wan port of the sme and set that value in the default dmz in your router.

Of course you could always do what I recommended in the first place and let your sme do what it was designed for in server-gateway mode. I think it would have solved all your problems much faster.