|
»
»
NAT Loopback change in Endian Firewall 2.2
|
View:
New views
8 Messages
—
Rating Filter:
Alert me
|
 |
NAT Loopback change in Endian Firewall 2.2
by Caizi
::
Rate this Message:
Please does somebody know why there is change of IP NAT Loopback behaviour in EFW 2.2? Or how to correct problem?
I need access internal servers from LAN by external IP with port forwarding. For example we have some users with laptops who occasionally work from home so their email client is set to the WAN IP, but when they bring the laptop into the office they are unable to connect to the mail server without changing their email client to the LAN IP of the mail server. Before I was using EFW 2.1.x and there it worked correctly without any special options. But with 2.2 it is not working. I could succesfull ping or access endian web admin interface https://external-ip:10443 but accessing some other services in internal network is not working. Thanks for help. |
|
|
Re: NAT Loopback change in Endian Firewall 2.2
by Johnny-M
::
Rate this Message:
Is the port forwarding being done on the primary Red IP or an alias IP?
-----Original Message----- From: Caizi [mailto:caizi@...] Sent: 07/18/2009 12:14 PM To: efw-user@... Subject: [Efw-user] NAT Loopback change in Endian Firewall 2.2 Please does somebody know why there is change of IP NAT Loopback behaviour in EFW 2.2? Or how to correct problem? I need access internal servers from LAN by external IP with port forwarding. For example we have some users with laptops who occasionally work from home so their email client is set to the WAN IP, but when they bring the laptop into the office they are unable to connect to the mail server without changing their email client to the LAN IP of the mail server. Before I was using EFW 2.1.x and there it worked correctly without any special options. But with 2.2 it is not working. I could succesfull ping or access endian web admin interface https://external-ip:10443 but accessing some other services in internal network is not working. Thanks for help. -- View this message in context: http://www.nabble.com/NAT-Loopback-change-in-Endian-Firewall-2.2-tp24549 413p24549413.html Sent from the efw-user mailing list archive at Nabble.com. ------------------------------------------------------------------------ ------ Enter the BlackBerry Developer Challenge This is your chance to win up to $100,000 in prizes! For a limited time, vendors submitting new applications to BlackBerry App World(TM) will have the opportunity to enter the BlackBerry Developer Challenge. See full prize details at: http://p.sf.net/sfu/Challenge _______________________________________________ Efw-user mailing list Efw-user@... https://lists.sourceforge.net/lists/listinfo/efw-user ------------------------------------------------------------------------------ Enter the BlackBerry Developer Challenge This is your chance to win up to $100,000 in prizes! For a limited time, vendors submitting new applications to BlackBerry App World(TM) will have the opportunity to enter the BlackBerry Developer Challenge. See full prize details at: http://p.sf.net/sfu/Challenge _______________________________________________ Efw-user mailing list Efw-user@... https://lists.sourceforge.net/lists/listinfo/efw-user |
|
|
|
|
|
Re: NAT Loopback change in Endian Firewall 2.2
by Caizi
::
Rate this Message:
Hi Ben,
thanks for reply but DNS solution is not exactly what i need, because then you are not able to use port forwarding option. This is important if you are using different services on separate servers. For example under FQDN name mail.mydomain.com I have mailserver on internal server1 but webmail is on internal server2. So I need to forward requests to ports 25,465,995,993 to server1 but requests for port 80,443 to server2. So DNS solution is usable only in simple scenarios. Some another solution?
|
|
|
Re: NAT Loopback change in Endian Firewall 2.2
by Caizi
::
Rate this Message:
In network setup I have configured only one external IP. And in port forwarding rule I have this:
TCP Uplink ANY : 25(SMTP) => 192.168.1.21 : 25(SMTP) allow SMTP TCP Uplink ANY : 443(HTTPS) => 192.168.1.31: 443(HTTPS) allow Webmail Any idea?
|
|
|
Re: NAT Loopback change in Endian Firewall 2.2
by Johnny-M
::
Rate this Message:
Caizi,
I have a similar setup. I have my users on the Green network and put the servers which are accessed from inside and outside on the Orange network. As long as your EFW has 3 NIC cards, you should be able to set this up with no problem. Make sure you allow access from the Orange network to the Green network for the ports listed below. Johnny -----Original Message----- From: Caizi [mailto:caizi@...] Sent: 07/19/2009 5:34 AM To: efw-user@... Subject: Re: [Efw-user] NAT Loopback change in Endian Firewall 2.2 In network setup I have configured only one external IP. And in port forwarding rule I have this: TCP Uplink ANY : 25(SMTP) => 192.168.1.21 : 25(SMTP) allow SMTP TCP Uplink ANY : 443(HTTPS) => 192.168.1.31: 443(HTTPS) allow Webmail Any idea? Johnny-M wrote: > > Is the port forwarding being done on the primary Red IP or an alias IP? > > -----Original Message----- > From: Caizi [mailto:caizi@...] > Sent: 07/18/2009 12:14 PM > To: efw-user@... > Subject: [Efw-user] NAT Loopback change in Endian Firewall 2.2 > > > Please does somebody know why there is change of IP NAT Loopback > behaviour in > EFW 2.2? Or how to correct problem? > > I need access internal servers from LAN by external IP with port > forwarding. > For example we have some users with laptops who occasionally work from > home > so their email client is set to the WAN IP, but when they bring the > laptop > into the office they are unable to connect to the mail server without > changing their email client to the LAN IP of the mail server. > > Before I was using EFW 2.1.x and there it worked correctly without any > special options. But with 2.2 it is not working. I could succesfull > ping or > access endian web admin interface https://external-ip:10443 but > accessing > some other services in internal network is not working. > > > Thanks for help. > -- > View this message in context: > > 413p24549413.html > Sent from the efw-user mailing list archive at Nabble.com. > > > ------------------------------------------------------------------------ > ------ > Enter the BlackBerry Developer Challenge > This is your chance to win up to $100,000 in prizes! For a limited time, > > vendors submitting new applications to BlackBerry App World(TM) will > have > the opportunity to enter the BlackBerry Developer Challenge. See full > prize > details at: http://p.sf.net/sfu/Challenge > _______________________________________________ > Efw-user mailing list > Efw-user@... > https://lists.sourceforge.net/lists/listinfo/efw-user > > ------ > Enter the BlackBerry Developer Challenge > This is your chance to win up to $100,000 in prizes! For a limited time, > vendors submitting new applications to BlackBerry App World(TM) will have > the opportunity to enter the BlackBerry Developer Challenge. See full > prize > details at: http://p.sf.net/sfu/Challenge > _______________________________________________ > Efw-user mailing list > Efw-user@... > https://lists.sourceforge.net/lists/listinfo/efw-user > > -- View this message in context: http://www.nabble.com/NAT-Loopback-change-in-Endian-Firewall-2.2-tp24549 413p24555324.html Sent from the efw-user mailing list archive at Nabble.com. ------------------------------------------------------------------------ ------ Enter the BlackBerry Developer Challenge This is your chance to win up to $100,000 in prizes! For a limited time, vendors submitting new applications to BlackBerry App World(TM) will have the opportunity to enter the BlackBerry Developer Challenge. See full prize details at: http://p.sf.net/sfu/Challenge _______________________________________________ Efw-user mailing list Efw-user@... https://lists.sourceforge.net/lists/listinfo/efw-user ------------------------------------------------------------------------------ Enter the BlackBerry Developer Challenge This is your chance to win up to $100,000 in prizes! For a limited time, vendors submitting new applications to BlackBerry App World(TM) will have the opportunity to enter the BlackBerry Developer Challenge. See full prize details at: http://p.sf.net/sfu/Challenge _______________________________________________ Efw-user mailing list Efw-user@... https://lists.sourceforge.net/lists/listinfo/efw-user |
|
|
Re: NAT Loopback change in Endian Firewall 2.2
by NoDough
::
Rate this Message:
Caizi,
I am still running 2.1.2, so I can't help you with your original request as I've no idea how to change 2.2's behavior. You may want to consider this. DNS could still work for you. Just use separate domain names for SMTP and WEBMAIL. For example: Internal DNS Server: mail.mydomain.com 192.168.1.31 smtp.mydomain.com 192.168.1.21 External DNS Server: mail.mydomain.com 4.3.2.1 smtp.mydomain.com 4.3.2.1 Endian Port Forwarding: 4.3.2.1:25(SMTP) => 192.168.1.21:25(SMTP) 4.3.2.1:465(SMTPS) => 192.168.1.21:465(SMTPS) 4.3.2.1:995(POP3S) => 192.168.1.21:995(POP3S) 4.3.2.1:993(IMAPS) => 192.168.1.21:993(IMAPS) 4.3.2.1:80(HTTP) => 192.168.1.31:80(HTTP) 4.3.2.1:443(HTTPS) => 192.168.1.31:443(HTTPS) Then point your mail clients to smtp.mydomain.com. Voila. Hope this helps. Lane Beneke Network Administrator Southern Piping Co. (252) 291-1561 ext. 1148 -----Original Message----- From: Caizi [mailto:caizi@...] Sent: Sunday, July 19, 2009 5:33 AM To: efw-user@... Subject: Re: [Efw-user] NAT Loopback change in Endian Firewall 2.2 In network setup I have configured only one external IP. And in port forwarding rule I have this: TCP Uplink ANY : 25(SMTP) => 192.168.1.21 : 25(SMTP) allow SMTP TCP Uplink ANY : 443(HTTPS) => 192.168.1.31: 443(HTTPS) allow Webmail Any idea? Johnny-M wrote: > > Is the port forwarding being done on the primary Red IP or an alias IP? > > -----Original Message----- > From: Caizi [mailto:caizi@...] > Sent: 07/18/2009 12:14 PM > To: efw-user@... > Subject: [Efw-user] NAT Loopback change in Endian Firewall 2.2 > > > Please does somebody know why there is change of IP NAT Loopback > behaviour in > EFW 2.2? Or how to correct problem? > > I need access internal servers from LAN by external IP with port > forwarding. > For example we have some users with laptops who occasionally work from > home > so their email client is set to the WAN IP, but when they bring the > laptop > into the office they are unable to connect to the mail server without > changing their email client to the LAN IP of the mail server. > > Before I was using EFW 2.1.x and there it worked correctly without any > special options. But with 2.2 it is not working. I could succesfull > ping or > access endian web admin interface https://external-ip:10443 but > accessing > some other services in internal network is not working. > > > Thanks for help. > -- > View this message in context: > > 413p24549413.html > Sent from the efw-user mailing list archive at Nabble.com. > > > ------------------------------------------------------------------------ > ------ > Enter the BlackBerry Developer Challenge > This is your chance to win up to $100,000 in prizes! For a limited time, > > vendors submitting new applications to BlackBerry App World(TM) will > have > the opportunity to enter the BlackBerry Developer Challenge. See full > prize > details at: http://p.sf.net/sfu/Challenge > _______________________________________________ > Efw-user mailing list > Efw-user@... > https://lists.sourceforge.net/lists/listinfo/efw-user > > ------ > Enter the BlackBerry Developer Challenge > This is your chance to win up to $100,000 in prizes! For a limited time, > vendors submitting new applications to BlackBerry App World(TM) will have > the opportunity to enter the BlackBerry Developer Challenge. See full > prize > details at: http://p.sf.net/sfu/Challenge > _______________________________________________ > Efw-user mailing list > Efw-user@... > https://lists.sourceforge.net/lists/listinfo/efw-user > > -- View this message in context: http://www.nabble.com/NAT-Loopback-change-in-Endian-Firewall-2.2-tp24549 413p24555324.html Sent from the efw-user mailing list archive at Nabble.com. ------------------------------------------------------------------------ ------ Enter the BlackBerry Developer Challenge This is your chance to win up to $100,000 in prizes! For a limited time, vendors submitting new applications to BlackBerry App World(TM) will have the opportunity to enter the BlackBerry Developer Challenge. See full prize details at: http://p.sf.net/sfu/Challenge _______________________________________________ Efw-user mailing list Efw-user@... https://lists.sourceforge.net/lists/listinfo/efw-user ------------------------------------------------------------------------------ Enter the BlackBerry Developer Challenge This is your chance to win up to $100,000 in prizes! For a limited time, vendors submitting new applications to BlackBerry App World(TM) will have the opportunity to enter the BlackBerry Developer Challenge. See full prize details at: http://p.sf.net/sfu/Challenge _______________________________________________ Efw-user mailing list Efw-user@... https://lists.sourceforge.net/lists/listinfo/efw-user |
|
|
Access of ACTATEK Biometrics in Endian Firewall 2.1.2 via web browser
by HaRoLd29
::
Rate this Message:
I've got problem in configuring our ACTATEK Biometric in accessing through web browser! I can access it through Internal LAn! But when im outside our company and going to a official business I cannot access the web interface of our ACTATEK! Can somebody give me possible solutions to this! Thank You Very Much!!!
|
| Free embeddable forum powered by Nabble | Forum Help |
