Koozali.org: home of the SME Server

Obsolete Releases => SME Server 7.x => Topic started by: asterof on September 21, 2007, 07:01:32 AM

Title: Setting Up As A Router
Post by: asterof on September 21, 2007, 07:01:32 AM

I have a fiber optic line to a converter, then to a hardwire / wireless router
The SME server connects to the router and uses a nailed IP outside of the
DHCP assigned IP address's.
The server also has a second NIC that is connected to a  DSL line thats used
to serve web pages to the public. This allows me to have wireless and hard wired access
to the server behind the routers firewall, as well as serve web pages to the public.
Is it possible to remove the NIC from the SME server, so no direct access to the Internet exists,
but still operate the web server.

Title: Re: Setting Up As A Router
Post by: mmccarn on September 21, 2007, 01:52:09 PM

I think you are saying your network is now configured like this:

Code: [Select]

Internet
  /     \
 |   WiFiRouter
  \     /     \
SMEServer    LAN_Workstations

And you want to drop the 'Internet -> SMEServer' link:

Code: [Select]

      Internet
         |
     WiFiRouter
       /      \
SMEServer    LAN_Workstations

If I'm right then you need to:

• Create port-forwarding rules on your WiFiRouter for ports 80 (http) and https( 443) to the LAN IP of your SMEServer
• Test access from the Internet to your SME using the WAN IP of the WiFiRouter (it should work)
• [add]Change DNS for SME domain from SME WAN IP to WiFiRouter WAN IP[/add]
  
• Re-run SME setup and change your operation mode (http://wiki.contribs.org/SME_Server:Documentation:Administration_Manual:Chapter5#Operation_Mode) from 'Server and gateway' to 'Server-only'
  
• Make sure you are only running one DHCP server on your LAN (either on the SME or on the WiFiRouter, but not both)

You can re-run the SME Setup program from the system console by logging in as 'admin', or from an ssh session by logging in as root and running su admin

In either case, you need to select 2. Configure this server

All options will default to their current values; don't change anything except the operation mode and you should be fine.

You'll need to reboot your SME when you're done.

Title: Re: Setting Up As A Router
Post by: asterof on September 21, 2007, 02:50:48 PM

Yes you are correct that is the way it is set up
Resetting it to the second method, how would my domain
need to be registered
Currently it is set to a nailed IP that is assigned to the nic on the SME that
is connected directly to the internet
Would the domain be set to the wifi routers nailed IP?

Title: Re: Setting Up As A Router
Post by: mmccarn on September 21, 2007, 03:19:41 PM

Or change the IP on the WiFiRouter.  Either one would work.

You can test your port forwarding rules using the external IP of the WiFiRouter - you should get the contents of your primary I-Bay. 

You'll have to fix the DNS (or change the WiFiRouter WAN IP) before any virtual domains will work correctly.

Title: Re: Setting Up As A Router
Post by: asterof on September 21, 2007, 03:49:38 PM

cant change the nailed IP on wan side of router
Verizon FIOS has assigned that one to the router
Because it is nailed I should be able to change my domain name
regiestor to that nailed ip instead of the nailed IP currently on
the second nic of the SME
I want to drop the second DSL line I have but retain the web site

Title: Re: Setting Up As A Router
Post by: mmccarn on September 21, 2007, 04:13:15 PM

That makes sense.  I've added 'change DNS settings' to the 'to do' list in my first post...