Solved

Can someone walk me through the Final Steps of Hosting a Web Site?

Posted on 2006-11-01
13
249 Views
Last Modified: 2006-11-18
Ok, First I'll explain what I've done and what I need.


I kind of inherited this IT job here at our very small company.  We have 5 servers and 30 users.  3 days ago, I was told to Register a Web Site and put it on our Server with our Company's Web Site.

So, I went to Register.com and Registered the Web Site Name they decided on.  I then started reading up on how to host multiple sites on the same server.

I went into the Server that holds our Company Web Site and Created a Directory in the Root C:\

I then went into the IIS and Right Clicked on the Company Web Site and Clicked Properties.  Then I clicked the Web Site Tab and clicked on the IP Address we have assigned to it and clicked Advanced.

Edited the Multiple identities for this Web Site  and typed the Company's Web Site address for the Host Header that I wanted.




THEN

I right clicked on the web server in IIS and clicked on New Web Site and created the new web site and followed the Wizard.

THEN when It was finished I went back and did the above stated steps for multiple web sites to this NEW Web site.

Once done I exited out.

I went to Register.com and clicked on the New Web Site and clicked on the Edit IP Addresses and I entered the Same IP address as our Company's Web site.  I was thinking since the Company Web Site IP address is to THIS server and the New Web Site is on THIS server they would therefore have the same IP address externally.

So, anyway, this is as far as I've gotten and when I try to go to the web site I get the Blank White page with the Forbidden Error.

So, Can anyone walk me through the remainder of the way?

Thank you
0
Comment
Question by:RgrWalker
  • 7
  • 6
13 Comments
 
LVL 5

Expert Comment

by:consulteware
ID: 17852247
First of all you should follow this steps to ensure that all the security is available on your webserver:

http://www.microsoft.com/technet/security/prodtech/IIS.mspx

Now you have one security (file permissions) problem, you must go to the folder that you have the website and  must have to add one user to the security with the permissions to read all the files and you will be able to see the website.
Be aware that in IIS you must define the startup document to get the right document, sometimes is default.htm or index.htm but sometimes can be other.

According to what you have posted this is the solution.

By the way you should put one Firewall in front of the server, if you want you can get one free one on www.smoothwall.org, and use the port forward to forward the port 80 to get to IIS and you are well protected.

To have one webserver on the Internet is one big step so be aware that you must always have the computers updated and checked for hackers and several others problems.
0
 
LVL 5

Expert Comment

by:consulteware
ID: 17852265
Sorry missed the user to add to the folder with the permissions to read, it is the user IUSR_MACHINENAME, MACHINENAME is your machine name, missed out that.
0
 

Author Comment

by:RgrWalker
ID: 17852366
Thank you for responding so fast, I sure hope I can follow it.  This is very new to me.
0
 

Author Comment

by:RgrWalker
ID: 17852484
Just a few questions and I'm sure there are going to be many more to follow.

First question.

You said, "you must go to the folder that you have the website and  must have to add one user to the security with the permissions to read all the files and you will be able to see the website."

The Folder that you want me to go to, is that the Folder in the Root Directory of that Server?  

Could you walk me through this part?

Thank you
0
 

Author Comment

by:RgrWalker
ID: 17852547
I would like to bring the point back up, is we currently have ONE Web Site currently on the Web that is being Hosted By us on Our Server.  But, I was not the one who set all of this up and the person that did set it up is no longer an employee.  If that information helps great, if not, I thought it would maybe shine a little light on the subject.
0
 
LVL 5

Expert Comment

by:consulteware
ID: 17852600
The folder that you must give the permissions is the folder where you have your website no other you should do this procedure. (Important, not to give permissions where are not needed)

You should put the web server installed in this way:


WWW
    |
    A
    |
    B
    |
    C

WWW- World Wide Web
A - Fire wall with an fixed IP, if you do not have and leased line you can have an router between www and A with port forward service running (port 80 forward) between router and A
B - web server, you should use the port forward (again port 80 forward).
C - your internal network.

By the way you should be aware about security.

I hope this helps.
0
What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

 

Author Comment

by:RgrWalker
ID: 17852687

Currently set up as such


         WWW
             |
Cisco PIX 510 Firewall
             |
      Web Server
             |
   Internal Network

The Cisco PIX Firewall has a Static IP, Like I said before, we have a Web site Currently On this Web Server and it is fully operational.

Could you walk me through the user and permssions you were talking about?

I went to the Current web site directory that we have operational and right clicked and went to the security tab and there isn't a user like you are talking about.
0
 
LVL 5

Accepted Solution

by:
consulteware earned 500 total points
ID: 17852795
The user must be added to the list with the permission to read all the files (Except the ones that should not be read).
On the Security Tab press "Add" button.
Then "Advanced" button.
"Find Now".
In the list at the bottom you will find the IUSR_MACHINENAME (MACHINENAME - means you computer name).
Just select that user.
"OK".
Then select "Read & Execute" check box.
Go to "Advanced"
And check the "Replace permission entreies on all child objects...", this option is needed if you have several subfolders with some content that is needed to be publish.

The Cisco PIX should be audited to be confirmed that is correctly configured to avoid all attacks.

I hope that is what you want.
0
 

Author Comment

by:RgrWalker
ID: 17852890
Ok, I did everything you've told me from above, I'm still not getting the site to pop up.  Let me dig around and see what I'm doing wrong.
0
 

Author Comment

by:RgrWalker
ID: 17852925
I've right clicked and checked just about every file and directory that has something to do with this web site and for the life of me I don't see why it won't show
0
 
LVL 5

Expert Comment

by:consulteware
ID: 17852945
But do not show any properties and Security settings? Is that?
0
 

Author Comment

by:RgrWalker
ID: 17852999
Never mind, I found the Problem.  I had a Sub Directory inside the Directory that I wasn't pointing to.

Thank you for your help.
0
 
LVL 5

Expert Comment

by:consulteware
ID: 17853014
Thanks, great for help you.
0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Envision that you are chipping away at another e-business site with a team of pundit developers and designers. Everything seems, by all accounts, to be going easily.
I've been asked to discuss some of the UX activities that I'm using with my team. Here I will share some details about how we approach UX projects.
The viewer will learn how to count occurrences of each item in an array.
The viewer will learn how to look for a specific file type in a local or remote server directory using PHP.

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now