-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 02/10/2006, at 2:34 PM, [EMAIL PROTECTED] wrote:
can anyone improve this to just a bad idea <grin>
Following opinion in these pages, also because I wanted a wireless
AP I got me
a wireless/router/modem in the form of a DLINK 604T.
That seemed a kewl idea, but not so: quite primitive/not working
Anyway my server: SMTP, WWW, OpenVPN, SSH all routed by the DLINK
as Virtual
Servers to 192.168.5.254
My WWW has 1/2 doz named VHosts most with Gallery2.
Externally all VHosts work. Internally (192.168.5.xx) the CSS part
of gallery
is missing, so all the Gallery VHosts are bare ugly HTML pages.
Any ideas on solutions. I prefer to not hack gallery.
Are you running your own DNS server? If so, look at running two
different VIEWS to answer queries based on the source address of the
host making the request. IOW, you'd have one view for your internal
network hosts (192.168.0.0/16, or even 192.168.5.0/24) and a
different view for external queries.
The internal view has zone files that return INTERNAL addresses and
allows recursion (make sure you have a forwarding DNS server, maybe
your ISP?). Similarly, the external zone should only return Internet-
routable addresses and deny recursion. Voila! Now just configure
DHCP to return the IP of your DNS server and I'd expect a lot of your
problems to disappear.
Internally all access to tigger.ws gets the modem setup page. Can't
find a way
to make the modem route internal queries to it's virtual server
I'd expect this is simply another symptom of wacky DNS resolutions.
Internal host requests IP of "tigger.ws", query sent to Internet,
some DNS server out there returns Internet address 1.2.3.4, internal
host now tries to connect to internal web server via outside IP
address. Unless your swanky new router supports loop-back routing,
the result is likely to be the router's setup page (default routing
destination etc). Just a thought.
This just a buy-this-not: I want to access my SSH server at a
secret port (to
stop the world ...). DLINK won't work with my secret port, try
another (which
does work, but irritating)
I know a number of people with t=low-end DLink gear that have it all
humming and clicking just nice. However, they all run their own DNS
servers.
I want openvpn on port 1194 to be routed to the server. 1194 too
does not
work.
Hrm - [EMAIL PROTECTED]
I'm really in a quandry. Toss in the towel? Try another router? Put
network
masq DNS etc back on my server? Find a solution <hopeful grin>
Sounds like a good idea. Personally, I'd just run my own DNS
internally and be happy :) But you might not be quite so comfy with
Bind...good luck James!
Cheers,
James (The other one)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (Darwin)
iD8DBQFFIZCWwBHpdJO7b9ERAm8tAJ4uVggoNt7bddOgcT3crlKRWHgl+gCgkxye
+V0nmCRglzmqpObhXIjKrR8=
=8r+H
-----END PGP SIGNATURE-----
--
SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/
Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
