Koozali.org: home of the SME Server

Obsolete Releases => SME Server 7.x => Topic started by: holo on March 29, 2007, 11:24:58 AM

Title: SME-Server 7.1 as Gateway and Server (Routing Public Ip's)
Post by: holo on March 29, 2007, 11:24:58 AM

Hello everyone,
I have encountered a problem: i have a class of public ip's and i want them to be routed and visible in the internet through SME-Server.
Is this possible to make SME route the class of public ip's and make them fully visible in the internet (Not firewalled)

Internet------SMEServer------Computers with Public ip's

Thx all.

Title: SME-Server 7.1 as Gateway and Server (Routing Public Ip's)
Post by: bpivk on March 29, 2007, 11:35:58 AM

You shouldn't do that and i think that it is not possible on SME.

Title: SME-Server 7.1 as Gateway and Server (Routing Public Ip's)
Post by: holo on April 03, 2007, 11:44:00 AM

If i use this configuration with SME-Server as Server Only :

Code: [Select]

Internet-----Gateway---switch---worstations
                            |
                            |
                   SME Server(Server Only)

Is it i possible to route the public ip's throught the gateway and the SME be the DNS server (mail,web,ftp).
Can SME resolve DNS queries like if a i have a domain www.example.com hosted on the SME and another workstation (inside the network) with public ip with this record in the server  workstation1.example.com, to point to the corect ip address of the workstation, the query beeing made from outside the network, no locally.

Title: SME-Server 7.1 as Gateway and Server (Routing Public Ip's)
Post by: Franco on April 03, 2007, 08:15:20 PM

In Server Only your firewall is disabled.

Title: SME-Server 7.1 as Gateway and Server (Routing Public Ip's)
Post by: bpivk on April 03, 2007, 08:44:46 PM

holo you do understand that you don't have a firewall and that you're open to hackers if you do what you described (if gateway doesn't have a firewall)

Title: SME-Server 7.1 as Gateway and Server (Routing Public Ip's)
Post by: holo on April 04, 2007, 11:05:31 AM

Yes i'm aware of that situation but my first issue is if it works like i said.
After that i will think about hackers.

Title: SME-Server 7.1 as Gateway and Server (Routing Public Ip's)
Post by: ltwally on April 10, 2007, 07:06:33 PM

Quote from: "holo"

If i use this configuration with SME-Server as Server Only :

Code: [Select]

Internet-----Gateway---switch---worstations
                            |
                            |
                   SME Server(Server Only)

Is it i possible to route the public ip's throught the gateway and the SME be the DNS server (mail,web,ftp).

Holo, this is not a good idea unless all those other computers are hardened servers.  That being said...

What you need to do is set your gateway for bridge mode.  As a "bridge," it will just convert your T1/cable/dsl line to Ethernet.  You then statically assign all the IP info (ip address, mask, gateway, dns, etc) to each computer.

Your SME box will also need a public IP address.  From there,  you will probably want to do some fancy firewall rules so that SME is both fully public, and set to only talk to your block of IP's.  This is beyond my pervue.

Be careful:  setting your gateway to a bridge can be a risky maneuver, and you can easily turn it into a brick.  If this device was purchased from your ISP, I would call them and have them set it for "bridge mode" for, were I you.