Hi Simon, Well - you are right and you are wrong :-)
The equipment is faulty. At least I see it so when you cant access your own public IP from the inside. But good luck on arguing that to you phone company in whose eyes this equipment is sublime at the very least. But alas, you are wrong on the second assumption. Split DNS does not hold the answer to all issues. There are such things as java and javascript throwing stones in your way. Let me see if I can explain the situation clearly enough: Your browser accesses my webserver. Amongst the things happening there is a serverside script or whatever who will supply java or javascripts running on your browser with data on where to find additional data on my server. Unfortunately the server side script will resolve the server name finding 192.168.0.25 which it happily will supply to the java or javascript running on your browser which now makes the java or javascript running on your browser try to retrieve data from 192.168.0.25 Successful or not - I have a hard time believing that you can access my server that way. So thats why split dns doesn't hold the answer to all questions in this universe. Cheers, Karsten On 22-09-2015 21:36, Simon Hobson wrote: > Karsten Jeppesen <kars...@jeppesens.com> wrote: > >> There are a lot of modern web stuff which include server and client side >> matching and if you use split DNS then you end up with the client side >> trying to reach your internal server through the local IP. So its a no-go. >> >> So I am hoping for an answer - not a work-around. > As already said, split DNS is the answer - unless you have some really odd > requirement then "it just works", transparently. > > Why would it be a problem having a client contacting the server directly by > it's internal address ? > > > ------------------------------------------------------------------------------ > _______________________________________________ ------------------------------------------------------------------------------ _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
