On 02/06/2015 09:46 AM, Eric Teeter wrote: > JD > > A stab in the dark may be that you have two web servers on the the same port > 80 > try changing the second web server to a different port say 9001 as your > translating > it should work. Your game is not on port 80 is it? > > hope this helps! > > ----- Original Message ----- > From: "Joseph DeGraw" <[email protected]> > To: [email protected] > Sent: Thursday, February 5, 2015 11:46:40 AM > Subject: [Shorewall-users] Forwarding 81 to internal lan webserver > > Hello, > > I installed Shorewall for the first time last night and I am very > impressed. I installed it to try and fix an issue that I really do not > understand. > > I have a typical 2 interface setup. I have comcast as my ISP. I did a > redirect on port 2100 to my local computer to play a game and it works > fine. So, I know redirect works ok. > > Now, I have a client that I have designed a webpage for and it is hosted > on one of my other local computers. Its ip is 10.0.1.33 I can access it > fine locally. But what I wanted to do is redirect port 5000 on the FW to > 10.0.1.33:80 . This would let my client view their new website and > critique it. However, What happens when they try > (www.renuecomputers.com:5000) is that they end up at my company website > (www.renuecomputers.com) so I tried having them test it by my external > ip:5000 and I get the same outcome. They never make it to the internal > computer (10.0.1.33) and end up at my website on the FW. > > If I shutdown my company website (apache2) and have them try again then > the browser errors out on the connection. > > This is my rule for the redirect to my internal webserver: > > DNAT net loc:10.0.1.33:80 tcp 5000 > > I did re-read the the docs on the two-interface setup and anything else > I could find but really do not have a clue. Anyone ever experience > something like this? > > What am I missing? or How should I troubleshoot this ? > > Thank you, > > JD > > ------------------------------------------------------------------------------ > Dive into the World of Parallel Programming. The Go Parallel Website, > sponsored by Intel and developed in partnership with Slashdot Media, is your > hub for all things parallel software development, from weekly thought > leadership blogs to news, videos, case studies, tutorials and more. Take a > look and join the conversation now. http://goparallel.sourceforge.net/ > _______________________________________________ > Shorewall-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/shorewall-users > > > ----- > No virus found in this message. > Checked by AVG - www.avg.com > Version: 2015.0.5646 / Virus Database: 4281/9060 - Release Date: 02/05/15 > > > > ----- > No virus found in this message. > Checked by AVG - www.avg.com > Version: 2015.0.5646 / Virus Database: 4281/9066 - Release Date: 02/06/15 > > > ------------------------------------------------------------------------------ > Dive into the World of Parallel Programming. The Go Parallel Website, > sponsored by Intel and developed in partnership with Slashdot Media, is your > hub for all things parallel software development, from weekly thought > leadership blogs to news, videos, case studies, tutorials and more. Take a > look and join the conversation now. http://goparallel.sourceforge.net/ > _______________________________________________ > Shorewall-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/shorewall-users >
First of all - THANKYOU for replying. I have had a hard time finding help and the normal forums I visit (Fedora, Mint ect) do not seem interested in my problem. Im pretty happy you did. I changed the port apache2 is running on so that its now 10.0.1.33:9001 My rule(s) look like this: # Forward port 9001 to 10.0.1.33:9001 on internal lan # ACCEPT $FW net tcp 9001 DNAT net loc:10.0.1.33:9001 tcp 9001 DNAT net loc:10.0.1.33:9001 udp 9001 I tried the ACCEPT rule to open the port but read somwhere that ACCEPT does not work with nat systems or it should not be used. So, I commented it out but left it for 'just in case'. My site : http://www.renuecomputers.com My redirect for the server running in loc would be then : My site : http://www.renuecomputers.com:9001 Through my reading I understand that I cannot test it from behind my firewall. I do not have anyone to check it right now (hint, hint, If you would like?) :) I really appreciate your reply. JD ------------------------------------------------------------------------------ Dive into the World of Parallel Programming. The Go Parallel Website, sponsored by Intel and developed in partnership with Slashdot Media, is your hub for all things parallel software development, from weekly thought leadership blogs to news, videos, case studies, tutorials and more. Take a look and join the conversation now. http://goparallel.sourceforge.net/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
