| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 141912 | 2016-03-22 05:26:00 | Port forwarding to access my home web server | chiefnz (545) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 1417937 | 2016-03-23 04:33:00 | Since you can access the web interface from the internet, which is definitely a bad move, maybe that is the ISPs remote access, as you say they can push updates, maybe web and ssh is accessible to them. It could also mean your 3g/4g is still on their network. To access it from internal networked computers from the outside, use web proxy services, anonymous proxies, etc, its how I normally test. Maybe change apache to listen on a different port, or use ip masquerade and port forwarding. This way you can direct external connections to a different port for your server. Changing the port that it listens on, would be changing the httpd.conf file, or to do ip masquerade and port forwarding, you will need your firewall on and perform #firewall-cmd --zone=public --add-masquerade --permanent #firewall-cmd --zone=public --add-forward-port=port=8888:proto=tcp:toport=80 --permanent This depends on your zone being public,in this example I use port 8888 and forward it to port 80, means I dont have to change httpd to listen on a different port. You would then port forward tcp connections on the router for port 8888 to your server. Cheers, KK |
Kame (312) | ||
| 1417938 | 2016-03-23 04:54:00 | SUCCESS!!! Well as a matter of speaking...Dare I say I've struck a blow to the big "ISP's provide $hitty modems" club. So I went out and bought a TP-Link TD-W9980 N600 Wireless Dual Band Gigabit VDSL2 Modem Router as well as a D-Link DGS-1100-05 5-port managed switch (not a requirement for my isssue but I was wanting something similar for a while now.) Anyways long story short. Setup the modem and associated WLAN configs etc. added a rule to the DMZ config and BAM I can access my webserver on the first try!!! :punk firewalld is enabled with an allow rule for http/https and SELinux is enabled. I just need to review the firewalld config as I'm not sure exactly where the allow rule should be. I'm thinking DMZ perhaps or is it external. Networking isn't my strong suit but the desire to learn is there. Thanks again for all the advice. I will have a play with the firewall and see how I get on. Please feel free to drop some knowledge on what the firewall rule should be. Cheers, |
chiefnz (545) | ||
| 1417939 | 2016-03-23 06:25:00 | Ok so the theory that using a 3G/4G connection on the Vodafone network will not work is now proven. I can access the web server using my SPARK mobile but cannot get to it if I use my tablet which is running on the Vodafone network. I'm not too sure if there is any "sense" behind this or if I'm in fact doing something wrong I've asked a friend to see if he can access the server from his home but have not heard back as yet. I have now changed the firewall settings only enabling http/https on the DMZ tab, all other "zones" are at their defaults and none of them have http/https ticked. I assume this is correct but if not please let me know. Cheers. |
chiefnz (545) | ||
| 1417940 | 2016-03-23 07:18:00 | Sounds dubious - still think you are either using your wifi or seeing a cached page. | fred_fish (15241) | ||
| 1417941 | 2016-03-24 01:45:00 | Sounds dubious - still think you are either using your wifi or seeing a cached page. Everything seems to be working ok now from vodafone and non-vodafone networks... mobile and terrestrial connections. I seemed to have disabled Internet access from the server so next step is to figure out how to get this going. Cheers, |
chiefnz (545) | ||
| 1 2 | |||||