Koozali.org: home of the SME Server

Legacy Forums => Experienced User Forum => Topic started by: Jan on June 03, 2003, 10:01:11 PM

Title: problem accessing server
Post by: Jan on June 03, 2003, 10:01:11 PM

Hi all,

Well i finally got my server working in gateway mode and thought all was well..... not quite. It seems web pages can including webmail can not be seen from the internet. I can see ftp and smtp ports just fine and e-mail works but webpages just don't get called.

The setup is as follows:

(1) Internet => (2) router modem (telindus1121) => (3) server => (4) lan

I set the router to foreward all ports (tcp and udp) to my external IP of the server.

The server has a static IP and has set its gateway to the IP to the internal Nic of the router. Als I added the IP range that the external NIC of the server and the internal Nic of the router use as being part of the local network.

I 'do not know whats wrong here but guess it is pretty simple, just don''t want to mess too much with it to prevent 'local' trouble.

I could try setting the server in the DMZ from the router. Just don't know if that's wise. I could set the gateway IP in the server to look for the one of my ISP. Has anyone got an idea if this could work and if not any other sugestions?

All respons is much apreciated thanks in advance.

regards,

Jan

Title: Re: problem accessing server
Post by: Graeme Fleming on June 03, 2003, 11:30:11 PM

>Well i finally got my server working in gateway mode and thought all was well..... >not quite. It seems web pages can including webmail can not be seen from the >internet. I can see ftp and smtp ports just fine and e-mail works but webpages >just don't get called.

.. can you ping www.yourdoman.com?  Is it in Server & Gateway NOT Private Server & Gateway mode??

>The setup is as follows:

>(1) Internet => (2) router modem (telindus1121) => (3) server => (4) lan

>I set the router to foreward all ports (tcp and udp) to my external IP of the server.

.. does the router have a static public ip or dynamic (& do you use ddns?)

>The server has a static IP and has set its gateway to the IP to the internal Nic of >the router. Als I added the IP range that the external NIC of the server and the >internal Nic of the router use as being part of the local network.

.. is the server using a NAT'd private IP?  Don't add the subnet range between the router & SME box into the local network list - this extra subnet is useful for extra securiy (tho most if not all of its advantages are eliminated by port forwadring everything to the SME box)

>I don't know whats wrong here but guess it is pretty simple, just don''t want to >mess too much with it to prevent 'local' trouble.

>I could try setting the server in the DMZ from the router. Just don't know if that's >wise. I could set the gateway IP in the server to look for the one of my ISP. Has >anyone got an idea if this could work and if not any other sugestions?

You have (sort of) done the DMZ stuff by virtue of the full port forwarding process.

Check through things and report back.

HTH

Title: Re: problem accessing server
Post by: Dan Brown on June 03, 2003, 11:37:25 PM

First, routers almost always cause more problems than they solve.  However, if you're forwarding _all_ ports, that probably isn't the problem here.  I'd bet your ISP is blocking port 80.

Title: Re: problem accessing server
Post by: Jan on June 04, 2003, 12:08:17 AM

Hi and thanks for the quick respons,

Well I have tried pinging no response, strange though because I can receive e-mail on port 25 and using scan.sygate.com I could also find the ident port open and the ftp service which I did have enabeled .... though I closed it for now. Still need to get chroot installed forcing people to go to their personal folder first.

The router does have a static IP which it gets by being a DHCP client on my ISP's gateway, its based on the MAC adress of the external port of the router. To prevent having to call my ISP to change it I haven't yet tried to put the router in bridgemode.

NATed IP...? Sorry I must be a noob because I don't quit understand what you mean by it.

I added the subnet of the internal IP range of the router because otherwise I could not get it to connect to the internet nor was I able to connect to the router.
I will hold off on the DMZ then. I would like to know if pointing the server to my ISP's gateway as gateway could work?

I think I answered most of your questions right? Still very much interested in what you all think. Thanks again for the respons.

regards,

Jan

Title: Re: problem accessing server
Post by: Jan on June 04, 2003, 12:11:14 AM

Dan,

i don't think its my ISP blocking anything. Before i set up this server as gateway it worked fine as a server only webserver. I forewarded port 80 and 443 and all worked like a charm. So I do not think that's the problem.

If you have other ideas what it could be or if you think you know the answer I would be very interested.

Kind regards,

Jan

Title: Re: problem accessing server
Post by: Peter on November 07, 2003, 06:03:05 PM

I have an Telindus 1121 ADSL modem connected to my extrenal network interface. Our ISP demands this modem is setup in bridging mode. The external interface is set to DHCP. Each time the server is rebooted I need to bring down the external interface and then up again to get the right IP address from my ISP. Every first time the external interface sends out an DHCP request it seems like the modem doesn't bind this address to the external interface, it always ends up with an IP address from the modem's DHCP pool. The second time after bringing down the interface and then up again it binds the ISP assigned IP address.

I was wondering if this is a known issue (Telindus of E-smith).

My e-smith version is 5.5

Regards,
Peter