fugazer
asked on
How to i reach IP address on my other NIC?
Hello,
I'm having trouble reaching some important IP's on my network.. It's a small network with Apache and IIS both running for web development... Anything connected to NIC2 cannot reach these services.. Here's my setup:
NIC 1 -> Connected to Linksys Router -> Connected to Internet:
IP: 192.168.1.2
Subnet: 255.255.255.0
Gateway: 192.168.1.1
DNS: 192.168.1.2
NIC 2 -> Connected to 1 workstation (macintosh):
IP: 10.0.0.1
Subnet: 255.0.0.0
Gateway: blank
DNS: 192.168.1.2
I have DHCP disabled on Linksys and forwarded to the windows servicer running DHCP services:
The DCHP Scope for NIC 1 is:
IP Range: 192.168.1.110 to 192.168.1.130
Router: 192.168.1.2
DNS Server: 192.168.1.2
DNS Domain Name: mydomain
The DHCP Scope for NIC 2 us:
IP Range: 10.0.0.110 to 10.0.0.120
Router 10.0.0.1
DNS Server: 10.0.0.1
DNS Domain Name: mydomain
For my workstation on NIC 2 to connect to the internet i had to set up Advanced Routing on my linksys router:
Destination IP: 10.0.0.0
Subnet: 255.0.0.0
Gateway: 192.168.1.2
So everything seems to work but any machines connected to NIC 2 can't reach my apache, or IIS services..
Apache is running on 192.168.1.2, port 8080, and i have DNS setup so it can resolve using http://dev.mydomain.com:8080/
IIS is running on 192.168.1.2, port 80, and that DNS resolves to http://dev.mydomain.com/
Any workstations connected to the Linksys router can reach these address fine, but anything behind NIC 2 can't... I can't even ping 192.168.1.2 (NIC1)..
All port's are correctly forwarded on the Linksys router..
How can i get workstations on NIC 2 to see IP 192.168.1.2 (where apache and IIS are running) ??
Thanks
I'm having trouble reaching some important IP's on my network.. It's a small network with Apache and IIS both running for web development... Anything connected to NIC2 cannot reach these services.. Here's my setup:
NIC 1 -> Connected to Linksys Router -> Connected to Internet:
IP: 192.168.1.2
Subnet: 255.255.255.0
Gateway: 192.168.1.1
DNS: 192.168.1.2
NIC 2 -> Connected to 1 workstation (macintosh):
IP: 10.0.0.1
Subnet: 255.0.0.0
Gateway: blank
DNS: 192.168.1.2
I have DHCP disabled on Linksys and forwarded to the windows servicer running DHCP services:
The DCHP Scope for NIC 1 is:
IP Range: 192.168.1.110 to 192.168.1.130
Router: 192.168.1.2
DNS Server: 192.168.1.2
DNS Domain Name: mydomain
The DHCP Scope for NIC 2 us:
IP Range: 10.0.0.110 to 10.0.0.120
Router 10.0.0.1
DNS Server: 10.0.0.1
DNS Domain Name: mydomain
For my workstation on NIC 2 to connect to the internet i had to set up Advanced Routing on my linksys router:
Destination IP: 10.0.0.0
Subnet: 255.0.0.0
Gateway: 192.168.1.2
So everything seems to work but any machines connected to NIC 2 can't reach my apache, or IIS services..
Apache is running on 192.168.1.2, port 8080, and i have DNS setup so it can resolve using http://dev.mydomain.com:8080/
IIS is running on 192.168.1.2, port 80, and that DNS resolves to http://dev.mydomain.com/
Any workstations connected to the Linksys router can reach these address fine, but anything behind NIC 2 can't... I can't even ping 192.168.1.2 (NIC1)..
All port's are correctly forwarded on the Linksys router..
How can i get workstations on NIC 2 to see IP 192.168.1.2 (where apache and IIS are running) ??
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Iamaslany:
I think its the first setup. This is my route
Internet <-- Linksys Router --> NIC1 (w2k3 server) NIC2 <-- workstation
When other people connect to the server they connect through the LInksys and the w2k3 box hands out IP's via DHCP.. those addresses are from 192.168.1.110/130
Everything behind NIC2 uses 10.0.0.110/120..
1intelsys:
I tried a network bridge.. it seemed to work, but i haven't tested if my VPN services still work..
I'm kinda new to the 'best practices' of what i'm trying to achieve.. Is a Network Bridge an appropriate solution?
I didn't like how i had to setup the network bridge with 192.168.1.X addresses... A network bridge sounds good if i could use 10.0.0.X IP's.. Moving away from 192.168.1.x is important b/c i've had problems with people dialing into the VPN if there router at home is providing the same address as well..
I couldn't find a way to get the Linksys router on the 255.0.0.0 subnet, b/c it only had options for 255.255.255.X subnets..
Should i use the Network bridge solution with one of the subnet's provided by the LInksys router?? If so, what IP ranges would i use for the DHCP scope?
Picture-1.png
I think its the first setup. This is my route
Internet <-- Linksys Router --> NIC1 (w2k3 server) NIC2 <-- workstation
When other people connect to the server they connect through the LInksys and the w2k3 box hands out IP's via DHCP.. those addresses are from 192.168.1.110/130
Everything behind NIC2 uses 10.0.0.110/120..
1intelsys:
I tried a network bridge.. it seemed to work, but i haven't tested if my VPN services still work..
I'm kinda new to the 'best practices' of what i'm trying to achieve.. Is a Network Bridge an appropriate solution?
I didn't like how i had to setup the network bridge with 192.168.1.X addresses... A network bridge sounds good if i could use 10.0.0.X IP's.. Moving away from 192.168.1.x is important b/c i've had problems with people dialing into the VPN if there router at home is providing the same address as well..
I couldn't find a way to get the Linksys router on the 255.0.0.0 subnet, b/c it only had options for 255.255.255.X subnets..
Should i use the Network bridge solution with one of the subnet's provided by the LInksys router?? If so, what IP ranges would i use for the DHCP scope?
Picture-1.png
I just had another idea. Open up IIS and go to the properties of the website you are using. Click Advanced under Web Site Identification and try adding the ipaddress for nic2.
ASKER
I think i'm going to stick with the Network Bridge solution... My connection speeds have seemed to increased when i made the bridge, plus everything is working..
I like how everything is on one network now, much tidyer for a small network..
My last question would be, what IP and Subnet would be best for the Network Bridge?? Since i have people dialing in on VPN i would like to have my network on something that isn't popular with main stream routers..
192.168.100.X ??? would that be good? if so, what subnet does that run on?
I like how everything is on one network now, much tidyer for a small network..
My last question would be, what IP and Subnet would be best for the Network Bridge?? Since i have people dialing in on VPN i would like to have my network on something that isn't popular with main stream routers..
192.168.100.X ??? would that be good? if so, what subnet does that run on?
192.168.100.x will work fine. subnet would be 255.255.255.0
ASKER
looks like DCHP won't work anymore.. connected workstations on linksys router and NIC 2 are gettng IP's ->169.254.229.153
My DCHP scope for the Network Bridge is:
Scope: 192.168.100.1/50
Router: 192.168.1.2
DNS Servers: 192.168.1.2
Domain Name: mydomain
Do you know how i can get my DHCP service back up and running under the bridge??
My DCHP scope for the Network Bridge is:
Scope: 192.168.100.1/50
Router: 192.168.1.2
DNS Servers: 192.168.1.2
Domain Name: mydomain
Do you know how i can get my DHCP service back up and running under the bridge??
You can always go to static addresses.
ASKER
putting the scope back onto 192.168.1.100/150 fixed the DHCP problem.. So which leaves me with the final question.
Is this a good setup? Shouldn't i configure my setup so im not running on the 192.168.1.X scope?
In the past, i was having problems with people connected to the VPN b/c routers like dlink etc hand out addresses that conflicted with my scope.
What would be the ideal scope?
Is this a good setup? Shouldn't i configure my setup so im not running on the 192.168.1.X scope?
In the past, i was having problems with people connected to the VPN b/c routers like dlink etc hand out addresses that conflicted with my scope.
What would be the ideal scope?
If you disable DHCP and go with static addressing you should be fine on both accounts. Or you can setup DHCP on your server leaving DHCP off on the router.
ASKER
DCHP is setup on the server.. Looking for a recommended scope that won't conflict with outside VPN connections.
192.168.73.x 255.255.255.0 make sure you change the routers ip
ASKER
There we go.. everything is working under the following configuration:
-Linksys router IP: 192.168.100.1
-Network Bridge IP: 192.168.100.2
-Network Bridge Subnet: 255.255.255.0
-Network Bridge Gateway: 192.168.100.1
-Preferred DNS Server: 192.168.100.2
My DCHP scope for the Network Bridge is:
Scope: 192.168.100.1/50
Router: 192.168.100.2
DNS Servers: 192.168.100.2
Domain Name: mydomain
Last thing.. How do i forward port's to the right IP? I tried forwarding a port under the linksys router but that doesn't work..
??
-Linksys router IP: 192.168.100.1
-Network Bridge IP: 192.168.100.2
-Network Bridge Subnet: 255.255.255.0
-Network Bridge Gateway: 192.168.100.1
-Preferred DNS Server: 192.168.100.2
My DCHP scope for the Network Bridge is:
Scope: 192.168.100.1/50
Router: 192.168.100.2
DNS Servers: 192.168.100.2
Domain Name: mydomain
Last thing.. How do i forward port's to the right IP? I tried forwarding a port under the linksys router but that doesn't work..
??
Are you trying to forward through the router or the bridge. And just a side note you don't want to give out IP information unless you have to. Its just one less thing an attacker has to find out through other mean.
ASKER
through the router, which is connected to the server, which connects to workstation
That will depend on the router. Is it a basic linksys router or is on par with a cisco router/switch.
ASKER
linksys wrt54g
I'm not sure which tab but i'm think administrative and ports you can set up port forwarding
ASKER
yup, i've tried to direct the port via the linksys router to the correct IP, but that doesn't work.. I'm guessing i need to do some routing on the w2k3 RRAS...
lamaslany, do you have a suggestion?
lamaslany, do you have a suggestion?
ASKER
i got it to work through uPnP on the linksys.. Its just needed to be disabled, then re-enabled again..
Everything seems to work great now.. thanks
Everything seems to work great now.. thanks
ASKER
Thanks for the tip on the Network bridge.. It took much configuration after the hint, but once i reconfigured my network infrastructure everything was great.
Is it:
Internet <-- Linksys Router --> 192.168.1.0/24 <-- server --> 10.0.0.0/8
where the 10.0.0.0/8 network is physically isolated from the 192.168.1.0/24 network?
Or is it:
Internet <-- Linksys Router --> 192.168.1.0/24 <-- server NIC#1
--> 10.0.0.0/8 <-- server NIC#2
where the 10.0.0.0/8 and 192.168.1.0/24 networks are running across the same physical network? If it is like this does the Linksys router have multiple IPs?