Networking :: Two Webservers Behind A Firewall?
Jan 30, 2011
I have two webservers in differents machines (192.168.1.10 and 192.168.1.20) that hosts two differents domains (www.test1.com and www.test2.com).
I have a machine that acts like firewall with two NICs one to the ADSL router and another to the internal net where the two servers are.
There is a way to route to one or another machine based on the domain name? I've been reading about how to do this with iptables and DNAT but I can't find a propper solution that use domain name as destination instead ip address.
View 5 Replies
ADVERTISEMENT
Mar 9, 2011
What is the best way to build a few webservers. Not that I would need this amount of space but taking ..... for an example. How are they able to have so much storage performance. Is it clustering? I mean how do you get that much storage and the performance shared? I know with raid you can get alot of space but videos are massive? I know there has to be a lot of servers filled with hd's. but how do they run all as one?
View 3 Replies
View Related
May 18, 2010
I am learning to setup firewall in my home for that i have selected four system(sys1,sys2....sys4) for testing .I have configured sys2 to act as a firewall with two NIC. sys3 and sys4 are inside the firewall . sys1 is not connected to firewall for testing purpose.
the IP assignments are follows :
sys1 : ( fedora, not connected to firewall i am thinking, But i am not sure )
IP : 192.168.2.1 ,
gateway : blank
dns1 : blank
dns2 : blank
sys2 firewall ,IPTABLES )
code....
what happened is that sys1(not connected to firewall) can ssh to sys4(connected,inside firewall),since the rules are written not to ssh form sys1 to sys4..
then I came to know whatever the request I give, It directly goes as sys1 --> sys4. Not as sys1-----> sys2(firewall)---> sys4 .and the firewall is not filtering and processing anything for both inbound and outbound (i think it's my mistake some where). the requests are directly going inside without firewall.
View 3 Replies
View Related
Mar 25, 2011
I suspect this is an initial configuration bug. All firewall logs seem to be going to all
three files. That causes a lot of clutter in the log files, and makes it difficult to see whether there are any serious problems being logged.
View 9 Replies
View Related
May 27, 2011
I'm trying to build firewall on Debian with 'Firewall Builder'. But it won't let me compile and run unless one interface is set as management. There are two interfaces on my computer: 'eth0' and 'lo'
I don't want to be able to configure firewall remotely, so could I use 'lo' as 'management interface'?
View 1 Replies
View Related
May 9, 2011
Can we use iptables as firewall instead of Juniper firewall
View 2 Replies
View Related
Jun 13, 2011
I have got a centos 5.5 box with 2 interface (WAN & LAN) and trying to configure firewall so that LAN user can browse [URL]...
View 6 Replies
View Related
Sep 26, 2010
i connect to internet with the connection (with Name: DSL Connection 1) that made by myself. now i wanna use the firestarter but i have a problem.
View 5 Replies
View Related
Nov 21, 2010
On the office we have a Firewall/VPN infrastructure. Everybody connects to internet trough an Access Point (Lynksys RWT120N), which, in turn, connects to a WatchWard/Firebox red box. I suppose this is the equipment that does the VPN stuff. Finally, the red box connects to a DSL modem from our ISP.The problem is: Everybody on the office can connect to the AP and surf the internet without any issues, excepting me when I connect with ubuntu 10.10. I have windows on the same machine and I can access the internet without problems.
What I have seen so far is that Network Manager associates with the AP, gets what I would consider all the expected information from DHCP, but internet connectivity is none.For "expected information from DHCP" i mean: IP address, gateway, and DNS.I can ping my assigned IP address, the gateway and even other machines in the same network. I cannot ping the DNS or other external IP addresses.
View 2 Replies
View Related
Oct 27, 2009
How do i set up my firewall to allow traffic from iperf?
View 6 Replies
View Related
Jul 21, 2010
I have 2 mail servers behind Cisco firewall ,both the mail servers have different domain configured on them ,but when I try to send emails from server1 to server2 it dont go and also I am not able to receive emails in between two servers,after checking logs I found that the two server are not able to connect each other on SMTP port with public IP .
I am not able to connect any of my server with public IP behind firewall.
View 3 Replies
View Related
Jan 11, 2010
I've recently installed Ubunter 9.10 Server Edition to use as a NAT firewall for the lab I run. I'm using iptables to do NAT forwarding and everything works great except that, occasionally, connections seem to break. Ssh connections close with "Connection reset by peer" and HTTP connections just stall out.I believe this has to do with the firewall's internal network interface occasionally dropping packets.
View 2 Replies
View Related
May 17, 2009
Our firewall (debian) currently has 4 public ip addresses (eth0 1.2.3.4, eth0:0 1.2.3.5, eth0:1 1.2.3.8, eth0:2 1.2.3.9) and 3 internal subnets (eth1 10.1.x.x, eth1:0 10.2.x.x, eth2 10.7.x.x). We are experiencing the following two problems which I believe have the same root cause. 1) The firewall cannot access beyond the isp gateway (1.2.3.1). 2) From externally, we can ping eth0 with no trouble, however, pinging the eth0:0, eth0:1 and eth0:2 interfaces have results similar to the following:
Code:
PING 1.2.3.8 (1.2.3.8) 56(84) bytes of data.
64 bytes from 1.2.3.8: icmp_seq=2 ttl=57 time=59.0 ms
64 bytes from 1.2.3.8: icmp_seq=2 ttl=57 time=63.0 ms (DUP!)
64 bytes from 1.2.3.8: icmp_seq=13 ttl=57 time=59.3 ms
64 bytes from 1.2.3.8: icmp_seq=13 ttl=57 time=63.0 ms (DUP!)
64 bytes from 1.2.3.8: icmp_seq=24 ttl=57 time=62.0 ms
64 bytes from 1.2.3.8: icmp_seq=24 ttl=57 time=65.6 ms (DUP!)
I get the feeling that I'm missing something obvious, especially since all traffic on the internal subnets can access externally as normal.
View 4 Replies
View Related
Mar 11, 2010
I would like a basic firewall on my netbook and first attempted this by using firestarter as i have no experience in writing IPTABLES rules from first principle and to be honest the syntax looks horrific! the problem with firestarted is that when i selected WLAN0 to be the internet connected port everything worked fine until i connected to a VPN at which nothing would work (the only error i got was when pinging an IP address when i got sendmsg not permitted) my normal setup is this.... normally im connected via WLAN0 to the internet. but one one particular network i must activate the VPN to use anything, this creates another interface tun0. both wlan0 and tun0 will be assigned an ip address but only the tun0 will do anything (the wlan0 one is configured by the network to just allow traffic to the vpn gateway and nothing else) what i really need is some way of creating a basic firewall (drop all incomming except ports i specify) that lives on wlan0 unless tun0 is active in which case it moves to tun0
View 3 Replies
View Related
Aug 1, 2009
I got 2 servers, each on different locations (server 1 and server 2). I want all traffic on server1 included web browsing, applications etc., be always going through server2, like a gateway. I want the traffic to be encrypted (maybe use VPN?) So if I browse, or any logs pick up ip adresses from applications used by server1, I want it to display the IP address from server2 (Might be the wrong way to say it).
I always wants server2 to act as an firewall and logserver that logs all the traffic. I was thinking about using Snort for IPS/IDS solutions and OpenVPN for the traffic, but what can I use as a firewall? Most firewalls I find on google has its own OS/Distribution. Maybe Squid for logs? But squid does not support much protocols. Distribution on both servers are updated Debian/Ubuntu based.
View 3 Replies
View Related
Feb 25, 2010
I am a networking admin of a network running a mac osx server Running the Darwin 9.8.0 kernel. My goal is to get a firewall computer running ubuntu with the program IQfirewall. My networking hardware goes ( __ cat 5 cables)
*internet* _____DS1___ cisco router_____ a small switching hub___OSX server___a ProCurve switch ___ a cat 5 box____ routers ___ computers.
from what i have read I want the server to act like a gatway/firewall and sort of have the server forward packets to the OSX server.How would I get started. IQfirewall uses a GUI interface and I can later copy my rules if you would want to see them. it is based off of iptables
View 4 Replies
View Related
Jan 28, 2010
i have to deal with reverse proxy issue and want to access few LAN devices having port 5900 and 9999, what exact steps i have to follow to allow this port in fedora firewall.
View 3 Replies
View Related
Sep 3, 2009
I have a problem sending of file attachment using Instant Messengeri have a firewall using firestarter, if i used outside firewall they can able to recieve my file in instant meesenger but if i used firestarter it always cancelled my sending of file attachment....
View 3 Replies
View Related
Mar 4, 2009
I'm an it student and a newbie in linux OS.
We have this final project that we have to set-up
a firewall in a linux redhat OS which i totally have no idea ..
i did some research but haven't found the right one.
View 2 Replies
View Related
Apr 18, 2010
I got a new ISP, and it uses PPPoE. Let's say it's over eth1. After I connect there is a ppp0 -or similar interface. My question is what kind of firewall policy should I use on eth1? (block all, allow ppoe passthrough only or should I just do nothing?)
View 2 Replies
View Related
Mar 25, 2009
How can I make iptables allow my windows client to see my PC / smb shares? When I turn off the fedora firewall it just works fine, but how can I manage smb in a more secure way via iptables to work?
Code:
iptables -A INPUT -s 192.168.0.0/255.255.255.0 -j ACCEPT
But where do I get the correct address from? Will this example allow only 192.168.0.0 (is this a valid IP at all, usable by any PC? ) or anyone in the network (aka 192.168.0.*) to access my share?
View 3 Replies
View Related
Nov 28, 2009
The firewall in Fedora 12 seems to block UPnP by default, but opening port 1900 for UDP, as I have seen suggestedes not resolve the problem.have the following three scenarios:Firewall Enabled: Transmission cannot open a port by UPnPFirewall Enabled (1900 UDP allowed): Transmission cannot open a port by UPnPFirewall Disabled: Transmission opens a port via UPnP fineAny ideas? Yes, the port that I'm trying to open is also allowed. Router is a Linksys BEFSR41 v4.3, should you care
View 6 Replies
View Related
Nov 29, 2010
Even though I've set up HTTPS to be trusted, it still blocks my school's https site: "mnsu.edu/eservices" same with SAMBA and SSH.
If enter the GUI and authenticate as root, change anything and apply, then exit: it works fine and so does SAMBA. However, after restarting, everything stops working again.
yet secure firewall configuration that doesn't require any login or headaches.
View 6 Replies
View Related
Feb 9, 2010
I want to setup a router with firewall on ubuntu box that will connect windows pcs one serving as outside source and one serving as inside target.
View 2 Replies
View Related
Mar 13, 2010
I am using ubuntu 9.10. Configuring my firewall using guarddog. I have setup a rule to allow traffic OUT on port 7078 UDP, and just because i'm having problems i added an IN rule.
# Create the filter chains
# Create chain to filter traffic going from 'Internet' to 'Local'
ipchains -N f0to1
[code]....
View 2 Replies
View Related
Oct 12, 2010
I have installed Ubuntu 10.04 Server on an older desktop with the intent of making it into a firewall box. What I would like to do is hook one nic into the modem, and the other nic into my router. I'm not sure if I want to setup the 2 nics as bridged.
View 1 Replies
View Related
Apr 6, 2011
I am wanting to build myself a Linux based firewall and network switch but I am not entirely sure where to start. I would like to point out that I am aware that it would be easier and quicker to just buy a switch and use that, but this is an intellectual exercise.
What I want to do is have a NIC which has the internet coming in. The traffic is then passed through the firewall program (I think IP tables is what I should be using?).
Now my main issue is that I will have quite a few Network Interfaces to manage. The machine could easily assign IPs by DHCP and act as the DNS server but what would I need to use to share the internet connection to all the NICs? There will be at least 4 interfaces, but possibly up to 12.
View 2 Replies
View Related
Apr 23, 2011
im looking for a good firewall application.
View 2 Replies
View Related
Jun 29, 2010
I want to lock down my server to allow only certain ip addresses and ports in. I was thinking of doing this through the iptables but someone sugguested I used the hosts.allow and deny files to allow who can access the system. What do people suggest? If I"m trying to ensure no ip's can access my system except the ones I want, how would I do this with just the allow and deny files?
View 4 Replies
View Related
Sep 10, 2010
I have to make my final exam on network & security, my task is to compare Iptables and a firewall program, yeah not a distribution. I use Archlinux so I'd like to continue use it for my project! Anyway my question is: which Network firewall could be the best one? I need this features:
- packet filtering
- HA (High Availability)
- Live (active) connection migration (if one fails...)
- Load balancing (not really important but...)
I know "many" firewalls but they all are distro. I need something to install on a linux machine (as said... better if I can run it directly on Archlinux!)
View 2 Replies
View Related
