EFW Support

Support => General Support => Topic started by: ehermouet on Wednesday 21 March 2012, 01:47:19 am



Title: External ip use for internal serveur
Post by: ehermouet on Wednesday 21 March 2012, 01:47:19 am
Hi all,

my endian config is:

3 red nic why 3 external ip.
internal serveur use nic 1 to going to internet when it's port 80
computers use nic2 to going to internet when it's port 80

so with endian 2.4 i have create postrouting rule iptables -t nat -I POSTROUTING -s 192.168.1.0/24 -d 192.168.1.81 -p tcp --dport 80 -j SNAT --to-source external ip nic 1 and it's works.

but i have installed endian 2.5 and it's not work

do you have any suggest to correct it ?

Tks


Title: Re: External ip use for internal serveur
Post by: Blackice on Wednesday 21 March 2012, 07:40:48 am
Have you tried to make it from the Source NAT GUI tab ?.


Title: Re: External ip use for internal serveur
Post by: ehermouet on Wednesday 21 March 2012, 06:58:55 pm
No,

can you explain me that i can make on this tabs ?


Title: Re: External ip use for internal serveur
Post by: ehermouet on Tuesday 27 March 2012, 12:40:08 am
No body can't help me ?


Title: Re: External ip use for internal serveur
Post by: ehermouet on Friday 30 March 2012, 08:53:37 pm
I have try with source NAT and with iptables prompt same things. in 2.4 it works not 2.5, i suppose there is little change and nobody can said me what change ? it's very important please


Title: Re: External ip use for internal serveur
Post by: fqureshi on Saturday 31 March 2012, 07:32:40 am
Under the firewall, go to the tab incoming routed traffic. Create a rule source being your external IPs and allow those external IPs to destination any.

Hope this helps. I am runnig server behind Endian on external IP and all i have done is allowed Ip in incoming routed traffic. And yes in your cse you also have to create a. Route under network.


Title: Re: External ip use for internal serveur
Post by: ehermouet on Monday 02 April 2012, 05:12:53 pm
Under the firewall, go to the tab incoming routed traffic. Create a rule source being your external IPs and allow those external IPs to destination any.

Hope this helps. I am runnig server behind Endian on external IP and all i have done is allowed Ip in incoming routed traffic. And yes in your cse you also have to create a. Route under network.

tks for your reply

in my case it's not work. maybe cause my configuration.

i have specific rule to use uplink 2 when it's port 80. when we use serveur external ip, it use ip of uplink 1.

so the client use this to going to external ip (http://external_ip_uplink1) -> internet Uplink2 -> Uplink1 -> Serveur


Title: Re: External ip use for internal serveur
Post by: fqureshi on Monday 02 April 2012, 05:16:45 pm
Have you restored the configuration from 2.4 to 2.5?


Title: Re: External ip use for internal serveur
Post by: ehermouet on Monday 02 April 2012, 05:22:57 pm
Have you restored the configuration from 2.4 to 2.5?

Yes i have restore it, and it's here that i see my last configuration not works.

edit if i use uplink 1 to going to external ip of uplink1 it's work but not use uplink2 to going to uplink1


Title: Re: External ip use for internal serveur
Post by: ehermouet on Friday 20 April 2012, 04:53:02 pm
nobody can help me ?


Title: Re: External ip use for internal serveur
Post by: ehermouet on Friday 20 April 2012, 05:30:46 pm
I found solution

i have created policy routing to use ip of gateway when it's external ip of serveur
for exemple

my gateway ip is 192.168.1.253
my external ip si external ip
network is 192.168.1.0/24

create route policy

source 192.168.1.0/24
destination external ip
uplink ip_gateway green 192.168.1.253