Welcome, Guest. Please login or register.
Did you miss your activation email?
Monday 23 December 2024, 05:04:04 am

Login with username, password and session length

The Latest Endian Firewall is now available for download HERE
14262 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  General Support
| | |-+  Access denied
0 Members and 5 Guests are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: Access denied  (Read 22937 times)
gpalmia
Jr. Member
*
Offline Offline

Posts: 9


« on: Saturday 20 October 2012, 07:24:25 am »

hi all
on my LAN, red network has the address on subnet  192.168.1.x while the green network PCs are connected through the subnet 192.168.0.x.
A web server has address 192.168.1.2 (it is on the red network) and I want to get it from the PCs on the green network, but endian blocks traffic.
In particular, if I try to access to the server with its IP address from the green I can have access, while if I use the host name Endian says "access denied to the  chache manager".
Can you give me some advice?
Thanks in advance.
Logged
dda
Sr. Member
****
Offline Offline

Posts: 227


« Reply #1 on: Tuesday 23 October 2012, 09:14:26 am »

Did you try white listing it or putting a rule in the firewall to allow outgoing traffic to that ip address on the appropiate port?
Logged
gpalmia
Jr. Member
*
Offline Offline

Posts: 9


« Reply #2 on: Tuesday 23 October 2012, 06:40:42 pm »

Dda Thanks for your answer!
Yes of course I have already tried the solutions that you show me; I do not understand why if I type the IP address in the browser can not reach the host and if I enter the symbolic address that does not happen (note that from the outside, from the Internet, all works regularly)
Thank you again.
Logged
dda
Sr. Member
****
Offline Offline

Posts: 227


« Reply #3 on: Wednesday 24 October 2012, 12:59:16 am »

Are you able to ping that address?
What is your subnet mask?
Logged
gpalmia
Jr. Member
*
Offline Offline

Posts: 9


« Reply #4 on: Wednesday 24 October 2012, 02:48:46 am »

Yes.
I am able to ping either  ip address and simbolic address.

All PC inside the LAN have subnet mask 255.255.255.0

Note that there is a mistake in the previous post: if I type the IP address in the browser I can reach the host and if I enter the symbolic address than I cannot reach the host (note that from the outside, from the Internet, all works regularly)
Logged
dda
Sr. Member
****
Offline Offline

Posts: 227


« Reply #5 on: Wednesday 24 October 2012, 07:56:46 am »

So you can ping the ip address or the url name and use the ip address in the browser but you cannot type the url name into the browser correct?
You should have put that machine in the orange zone rather than the red zone.
Logged
gpalmia
Jr. Member
*
Offline Offline

Posts: 9


« Reply #6 on: Wednesday 24 October 2012, 08:12:43 am »

OK. Thank you dda.
I'll try to follow your advices.
Logged
gbartley
Jr. Member
*
Offline Offline

Posts: 2


« Reply #7 on: Thursday 25 October 2012, 12:23:44 pm »

I ran across this issue as well and for me it was the Proxy. I turned it off and I could access the site.

Hope this helps.

Logged
gpalmia
Jr. Member
*
Offline Offline

Posts: 9


« Reply #8 on: Friday 26 October 2012, 07:50:42 am »

My real problem is that I have two web servers (two separate and independent physical machines ) that I would like to reach from the inside (from the LAN) and from outside (from internet). Setting the DNS server inside the LAN I can directly call to the two servers without problems, but for calls outside what should I do? If I set the DNS server so that calls from the Internet reach the same IP address, how  will I distinguish calls to one server from another? Instead if the calls from the Internet are directed to different IP addresses (my router can work with this configuration) how can I reach the two computer through EFW?
I hope I explained ....
Thanks for the reply.
Logged
gbartley
Jr. Member
*
Offline Offline

Posts: 2


« Reply #9 on: Sunday 04 November 2012, 08:32:58 am »

Ok in a situation when you have two physical web servers that you want to be able to access from the internet you are going to need to use a reverse proxy. Currently I am using apache that is installed on an ubuntu server to complete this task on my network.
Once you have the reverse proxy setup you point all your port 80 traffic to the reverse proxy then it will direct the request to the appropriate server.

Have a look at this link for an overview. ubuntuguide.org/wiki/Apache2_reverse_proxies

hope this helps!
Logged
fqureshi
Sr. Member
****
Offline Offline

Posts: 126


« Reply #10 on: Sunday 04 November 2012, 05:53:18 pm »

Gpalmia ...first try to run nslookup command on your endian console and see if your are able to resolve the internal address?? Otherwise you have to define your same dns which you are using on your other hosts into your endian firewall.

I have to define my dns when i had this issue ...

Secondly if you are using proxy it will use the dns which are defined in /etc/resolv.conf ....

As far as i remeber ...if you want me to confirm it for you ..i will check my firewall and tell u which dns it is using and when ..
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.125 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com