|
|
Hi there,
I'm trying to do something different from the norm here, so please
forgive me.
I have a Windows 2003 Standard Edition Server which is the DNS server
for my domain. I have a client on the domain that I want to reach via
no-ip.info (call it adam.no-ip.info for now). I set up a forward
lookup zone for no-ip.info on the DNS server such that adam.no-ip.info
resolves to the IP address o the client PC, as well as the
corresponding reverse lookup pointer and nslookup confirms that it's
working.
If I type in adam.no-ip.info into a web browser from within the
network (any client or the server itself), I see the page I created on
the client PC for testing purposes. However, if I do the same test on
say a proxy server, I see the default web page for the server and not
the client.
What else would I need to do so that externally, I would see the same
thing as internally? (Note: I'm not actually hosting a website on
the client machine or I would use the web server...it's an application
that requires a client machine and a web server.)
Thanks.
Adam Senour
http://www.walkonmypath.com
|
|
Read inline please.
In news:1177359347.540327.116080[ at ]y80g2000hsf.googlegroups.com,
SEFL <adam[ at ]searchenginefriendlylayouts.com> typed:
[Quoted Text] > Hi there,
>
> I'm trying to do something different from the norm here, so please
> forgive me.
>
> I have a Windows 2003 Standard Edition Server which is the DNS server
> for my domain. I have a client on the domain that I want to reach via
> no-ip.info (call it adam.no-ip.info for now). I set up a forward
> lookup zone for no-ip.info on the DNS server such that adam.no-ip.info
> resolves to the IP address o the client PC, as well as the
> corresponding reverse lookup pointer and nslookup confirms that it's
> working.
>
> If I type in adam.no-ip.info into a web browser from within the
> network (any client or the server itself), I see the page I created on
> the client PC for testing purposes. However, if I do the same test on
> say a proxy server, I see the default web page for the server and not
> the client.
>
> What else would I need to do so that externally, I would see the same
> thing as internally? (Note: I'm not actually hosting a website on
> the client machine or I would use the web server...it's an application
> that requires a client machine and a web server.)
The problem is, if your Public address is dynamic, you will only get one IP
address, and the limitation of NAT when an incoming connection comes in on
that one IP, on a given port, it can be mapped to only one client. If you
want the IP to mapped to more than one client, each connection would have to
be a a unique port.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
Send IM: http://www.icq.com/people/webmsg.php?to=296095728
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
http://message.wftx.us/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
Hi Kevin,
Just to clear this up (since I think I get what you mean):
In order for me to access the second machine on port 80 (or any other
port of my choosing...ultimately I need to access both ports 80 and
3389), then I'd need to figure out how to port forward say 8080 to
port 80 on the client?
Thanks.
|
|
"SEFL" <adam[ at ]searchenginefriendlylayouts.com> wrote in message
news:1177372391.258671.199680[ at ]o5g2000hsb.googlegroups.com...
[Quoted Text] > Hi Kevin,
>
> Just to clear this up (since I think I get what you mean):
>
> In order for me to access the second machine on port 80 (or any other
> port of my choosing...ultimately I need to access both ports 80 and
> 3389), then I'd need to figure out how to port forward say 8080 to
> port 80 on the client?
Yes. If you only have one external IP (dynamic or static but only 1)
but need to map the same SERVICE to different internal machines
then each such mapping will need one external PORT to make that
work.
So yes, for the web you can send 80 to one place, 8000 to another,
8080 to a third etc. AND you have to tell the outside clients about
this somehow so they can specify it -- or have it built into the link
they follow to reach you.
For 3389 to RDP it is even harder (or easier depening on what you
actually do) since you have to work harder to tell the RDP client
and server to use another port. Especially the server which requires
a registry change and (I believe) then only works on this altered
port even for internal-internal connections.
BUT one trick with RDP that works best if this is "just for you"
(or other admins) is the "leapfrog RDP" method:
Connect to only one machine from outside, then run an RDP
client from the INTERNAL machine to reach any other
internal machine by "leapfrogging".
--
Herb Martin, MCSE, MVP
http://www.LearnQuick.Com
(phone on web site)
|
|
In news:1177372391.258671.199680[ at ]o5g2000hsb.googlegroups.com,
SEFL <adam[ at ]searchenginefriendlylayouts.com> typed:
[Quoted Text] > Hi Kevin,
>
> Just to clear this up (since I think I get what you mean):
>
> In order for me to access the second machine on port 80 (or any other
> port of my choosing...ultimately I need to access both ports 80 and
> 3389), then I'd need to figure out how to port forward say 8080 to
> port 80 on the client?
>
> Thanks.
You get the jest of it, one external port can only be remapped once to only
one internal IP.
You are better off using VPN to get in, and once in, you can RDP into any of
the machines using their internal NetBIOS names (provided you have WINS
support).
I suggest a Cisco PIX, but you can always use Windows RRAS. PPTP is the
easiest and quickest to setup. Just setup RRAS as a VPN/router. Then to
provide PPTP connectivity to allow Windows RRAS to authenticate and provide
the connection, on your current firewall/NAT device, port remap TCP 1723 and
Protocol ID #47 to the internal RRAS.
--
Regards,
Ace
Innovative IT Concepts, Inc (IITCI)
Willow Grove, PA
This posting is provided "AS-IS" with no warranties or guarantees and
confers no rights.
Ace Fekay, MCSE 2003 & 2000, MCSA 2003 & 2000, MCSE+I, MCT, MVP
Microsoft MVP - Directory Services
Microsoft Certified Trainer
Infinite Diversities in Infinite Combinations
Having difficulty reading or finding responses to your post?
Instead of the website you're using, try using OEx (Outlook Express
or any other newsreader), and configure a news account, pointing to
news.microsoft.com. Anonymous access. It's free - no username or password
required nor do you need a Newsgroup Usenet account with your ISP. It
connects directly to the Microsoft Public Newsgroups. OEx allows you
o easily find, track threads, cross-post, sort by date, poster's name,
watched threads or subject. It's easy:
How to Configure OEx for Internet News
http://support.microsoft.com/?id=171164
"Quitting smoking is easy. I've done it a thousand times." - Mark Twain
|
|
Read inline please.
In news:1177372391.258671.199680[ at ]o5g2000hsb.googlegroups.com,
SEFL <adam[ at ]searchenginefriendlylayouts.com> typed:
[Quoted Text] > Hi Kevin,
>
> Just to clear this up (since I think I get what you mean):
>
> In order for me to access the second machine on port 80 (or any other
> port of my choosing...ultimately I need to access both ports 80 and
> 3389), then I'd need to figure out how to port forward say 8080 to
> port 80 on the client?
Port 80 could only go to one client, port 8080 to one server, 3389 to one
client.
The only way around this is to map alternate ports, the way to work around
this is to use port remapping, if your NAT device supports this (Windows NAT
does) for instance, for the RDP connection, you can use remapped ports like
this:
<publicIP>:3389--><internalIP>:3389
<publicIP>:3390--><secondinternalIP>:3389
<publicIP>:3391--><thirdinternalIP>:3389
Then in your RDP client use adam.no-ip.info for the default 3389 port,
adam.no-ip.info:3390, adam.no-ip.info:3391, etc. Each of these connections
will get mapped to the correct client behind NAT.
It works the same for web servers http://adam.no-ip.info will go to the
server on port 80 http://adam.no-ip.info:8080 will go to the server on port
8080.
--
Best regards,
Kevin D. Goodknecht Sr. [MVP]
Hope This Helps
Send IM: http://www.icq.com/people/webmsg.php?to=296095728
===================================
When responding to posts, please "Reply to Group"
via your newsreader so that others may learn and
benefit from your issue, to respond directly to
me remove the nospam. from my email address.
===================================
http://www.lonestaramerica.com/
http://support.wftx.us/
http://message.wftx.us/
===================================
Use Outlook Express?... Get OE_Quotefix:
It will strip signature out and more
http://home.in.tum.de/~jain/software/oe-quotefix/
===================================
Keep a back up of your OE settings and folders
with OEBackup:
http://www.oehelp.com/OEBackup/Default.aspx
===================================
|
|
"Ace Fekay [MVP]" <PleaseAskMe[ at ]SomeDomain.com> wrote in message
news:e6N%23dPjhHHA.4668[ at ]TK2MSFTNGP04.phx.gbl...
[Quoted Text] > In news:1177372391.258671.199680[ at ]o5g2000hsb.googlegroups.com, > SEFL <adam[ at ]searchenginefriendlylayouts.com> typed: >> Hi Kevin, >> >> Just to clear this up (since I think I get what you mean): >> >> In order for me to access the second machine on port 80 (or any other >> port of my choosing...ultimately I need to access both ports 80 and >> 3389), then I'd need to figure out how to port forward say 8080 to >> port 80 on the client? >> >> Thanks. > > You get the jest of it, one external port can only be remapped once to > only one internal IP.
Ace: Surely you jest! <grin>
Just joking; I never take serious issue with typos due to my on prediliction
for
them.
--
Herb
|
|
In news:%23ZQI7HohHHA.4624[ at ]TK2MSFTNGP04.phx.gbl,
Herb Martin <news[ at ]learnquick.com> typed:
[Quoted Text] > Ace: Surely you jest! <grin>
>
> Just joking; I never take serious issue with typos due to my on
> prediliction for
> them.
Oh the misspellings... good catch! LOL
|
|
|