Welcome, Guest. Please login or register.
Did you miss your activation email?
Thursday 28 November 2024, 02:57:32 am

Login with username, password and session length

Visit the Official Endian Bug tracker  HERE
14261 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  General Support
| | |-+  External access to internal server
0 Members and 2 Guests are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: External access to internal server  (Read 14147 times)
mediaguy
Jr. Member
*
Offline Offline

Posts: 6


« on: Saturday 11 September 2010, 01:37:33 pm »

Hello - I need to allow external access to a webserver that is behind Endian 2.4. I am lost as to how to configure the FW. Is anyone willing to point me in the right direction?
Logged
llysty
Full Member
***
Offline Offline

Posts: 10


« Reply #1 on: Thursday 16 September 2010, 09:23:03 pm »

Hello - I need to allow external access to a webserver that is behind Endian 2.4. I am lost as to how to configure the FW. Is anyone willing to point me in the right direction?

Not something I've had to do but the first point in the right direction is to have the webserver in the orange zone. this allows you to open up traffic to the webserver while still protecting your internal network. Once in orange, it should just be a case of opening up the port to the orange segment.

I like the pdf manual on endian's website for more info on how to configure the firewall and concepts behind the different parts of efw and reckon this will probably get you to where you want to be (just remember as it's for the commercial 2.2 version, some stuff isn't available on community). I can't post a link here to it so go to the main endian website (endian dot com) and from the top buttons go: support: documentation. Pdf of manual is on the lower right of the page. Page 9 introduces you to the orange zone concept.

Good luck and post back if your struggling and I'll see if I can't help.
Logged
mediaguy
Jr. Member
*
Offline Offline

Posts: 6


« Reply #2 on: Friday 17 September 2010, 07:34:52 am »

Thanks for your reply, but I have run into a problem. Endian doesn't seem to support onboard ethernet so I have two NICs installed to support my red and green networks. There isn't room on my board for a third NIC. Any ideas why the onboard ethernet doesn't work? When I go through the Endian Network Configuration eth2 is listed but has a red X in the link column.
Logged
phqr58
Full Member
***
Offline Offline

Gender: Male
Posts: 31


« Reply #3 on: Friday 17 September 2010, 07:49:47 am »

If you have no space to build a third card, the
alternative is to redirect the port 80 or port
are using the web server, the source can be
any network or network address or unique, destined for
ip on your LAN.
Logged
mediaguy
Jr. Member
*
Offline Offline

Posts: 6


« Reply #4 on: Friday 17 September 2010, 11:23:34 pm »

OK I have setup port forwarding using any uplink as the source and the server IP as the destination including the port. Still nothing. I'm thinking the firewall in my modem may be the problem. I've setup a Pinhole but am unsure what internal address to use - the firewall or the webserver.

If I run a port scan from t1shopper.com it says port 80 is not responding. Where do I go from here?
Logged
llysty
Full Member
***
Offline Offline

Posts: 10


« Reply #5 on: Friday 17 September 2010, 11:26:48 pm »

I'm struggling with my own portforward issues on efw but based on my current firewall, I would say the red ip address on efw.
Logged
mediaguy
Jr. Member
*
Offline Offline

Posts: 6


« Reply #6 on: Saturday 18 September 2010, 07:05:02 am »

Awesome! Thank you, that worked.

Now I need to make my external domain name resolve to an internal IP when used internally. Is there anything I need to do at the firewall level or is it all handled in DNS?
Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.109 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com