Access to own webserver via internet..
Ed Wilts
ewilts at ewilts.org
Tue Feb 1 18:58:52 UTC 2005
On Tue, Feb 01, 2005 at 07:44:09PM +0100, Greg wrote:
> Not sure whether this is the right place to ask.
Questions related to RHEL 3 should go to taroon-list, not redhat-list.
> Anyhow, I have a RHEL AS 3u4 running as webserver. It's placed in the
> firewall DMZ (smoothwall CS 3).
>
> Everything works fine - except this foolish thing, which I'm not able to
> solve:
>
> While access to the server via name (say http://xyz.ee) from any external PC
> works fine, it is not possible to acces the server via name from PC's on the
> LAN (Smoothwall, green interface).
>
> The server and the PC's on the LAN share the same external ip-adress (but
> are internally on separate nets (safe 'green' zone and DMZ 'orange' zone).
This is a really strange setup...
The webserver should have separate IP addresses for the internal and
external interfaces. The nameserver then needs to resolve the name to
the right one, answering with the internal interface address for your
internal hosts, and with the external interface address for your
external hosts. Bind 9 has a split personality mode that allows you to
do things like this.
My guess is that your nameserver is returning the external IP address to
your internal clients. You then do not have a route to that subnet.
--
Ed Wilts, RHCE
Mounds View, MN, USA
mailto:ewilts at ewilts.org
Member #1, Red Hat Community Ambassador Program
More information about the redhat-list
mailing list