Solved

I can't see my site from outside my Lan. I can ping it but I can't see it.

Posted on 2004-03-28
8
412 Views
Last Modified: 2011-09-20
I am running a sun server on a home lan with a Linksys 4 port router model BEFSR41.  I have DNS from a DNS service and I have configured the routerin the following manner:
Disabled the WAN block, I am running a static IP which is the same IP I have always had from roadrunner, I disabled dhcp, I enabled the DMZ, I enabled port forwarding using http port 80.  I did a ping test to find the best MTU setting and I came up with 1350.  I even tried all of the other MTU settings that were suggested by linksys and nothing.  A couple of nights ago I had it set to MTU 1492 and it started to work.  I could actually see it from outside the lan but the next morning I could no longer pull it up and I have not been able to pull it up since.  Very frustrating!  I can ping it just fine from outside the lan.  I tried pinging the DNS servers from inside the lan and I could only reach one.....don't know if that's a problem.  Any ideas, suggestions, answers would be greatly appreciated!  
0
Comment
Question by:roduno
8 Comments
 
LVL 2

Expert Comment

by:marius_petrescu
ID: 10706106
As far as i can unterstand, by disabling the wan part, you use your router as a plain 4 port switch. That means that by enabling port forwarding  and dmz, the device will forward outgoing packets from the web server to the inactive wan port and no routing will take place. You should think about that device as 2 things:


<WAN port> --- [<two port router> --- <ethernet switch>] ==== <4 ethernet ports>

so what happens on the 4 ethernet ports has nothing to do with routing, unless it passes through the router to the WAN port.


Greetings, and i hope it helped...
0
 
LVL 14

Accepted Solution

by:
nltech earned 250 total points
ID: 10746092
you dont need to enable dmz just to serve web pages from behind the router. you dont need to disable dhcp either.  

by default, the router's dhcp server will start handing out addresses starting with 192.168.1.100, so you can assign computers behind it addresses .2-.99 so long as you also configure dns servers on those computers (to your isp's dns servers) and gateway to the router's lan address (192.168.1.1 by default).

make sure the sun box has a static private net address (such as 192.168.1.10), has your isp's dns servers configured on it and gatway setup as router's lan address. then just forward port 80 (in the router's web-based configuration) to the static private address of the sun box.

to access the web site on the sun box, you enter your ISP's ip address (the router's address), the router will foward to the sun box. if you've got some sort of third-party redirect, make sure it's configured to go to your ISP ip address (ie. the public address of your router's wan port)

make sure your sun box doesnt have some firewall rules enabled that's blocking traffic in or out...

if you think you've got your router configuration all messed up, reset it to factory and reconfigure it. shouldn't need much configuring at all.. it's wan port mac should be cloned from whatever nic was originally used to set up the cable internet (most cable companies use mac addresses for authentication), go into port fowarding and forward port 80 to the static private address you've given the sun box. that should be all that's needed.

also have read reports from folks with this model router and flakey connections... seems to be a firmware related issue. so check on that too.
0
 

Author Comment

by:roduno
ID: 10747663
ok, I made the changes that you specified but I am still trying to figure out how to set the gateway on the sun box.  The initial configuration does not ask for a gateway so I assumed that it automatically sensed it.  As of the changes I can no longer get to the administrator gui for the web server so I'm not sure if the gateway piece is what I'm missing.  Let me figure out the gateway thing and I will get back to you.  Thanks.
0
 

Author Comment

by:roduno
ID: 10749467
I set up the defaultrouter file and here is my netstat information:
Routing Table: IPv4
  Destination           Gateway           Flags  Ref   Use   Interface
-------------------- -------------------- ----- ----- ------ ---------
192.168.1.0          192.168.1.6           U        1      1  dmfe0
224.0.0.0            192.168.1.6           U        1      0  dmfe0
default              192.168.1.1           UG       1      2
127.0.0.1            127.0.0.1             UH       2      6  lo0
#
I still can't access the server gui so I know something is not right.  I will keep troubleshooting but if you have any ideas please suggest.  Thank you!
0
What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

 

Author Comment

by:roduno
ID: 10749759
For nltech:  I just figured out that I can't see the without having the dmz activated and set to my webservers address.  I tried several things but the only way that I can see the webserver gui is with the DMZ activated.
0
 

Author Comment

by:roduno
ID: 10796968
I finally got this right!  It was the gateway configuration all along.  I finally got it configured properly to go through the router's gateway.  Thanks for all the info.
0
 
LVL 14

Expert Comment

by:nltech
ID: 10816809
the webserver gui may be functioning on a different port. ie: if you have to append :8080 or something to the end of the url, that's the non-standard port (i.e. http://www.somedomain.com:8080 or http://192.168.1.10:8080). you'd need to forward that port in the router too.
0
 
LVL 1

Expert Comment

by:nktm85
ID: 10913542
try enabling port 81 as well
On my SMC router i have to enbale both 80 and 81
Same for ftp port: I have to enable port 20 and 21
i dunno y
0

Featured Post

What Security Threats Are You Missing?

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Suggested Solutions

In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
Getting hacked is no longer a matter or "if you get hacked" — the 2016 cyber threat landscape is now titled "when you get hacked." When it happens — will you be proactive, or reactive?
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now