Hear ATEN Product Manager YT Liang review HDBaseT technology, highlighting ATEN’s latest solutions as they relate to real-world applications during her presentation at the HDBaseT booth at InfoComm 2017.
COURSE of the MONTH
11 days, 22 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Web and mail server
Posted on 2011-03-09
Hi Experts,
I have just set up the following to host websites and email for our clients -
Host - Server 2008R2 (ENT)
Virtual OS1 -(STD) Server2008R2 - D/C has the program mailenable std version installed on it for clients mail.
Virtual OS2 -(STD) WebServer2008R2 - Websites
The problem is our clients checking their webmail which also needs to come through on the same port as the webserver.(Which is on s different internal IP) I tried to make this port 8080 but I obviously have this wrong as it is not working all I get is the standard IIS7 page come up which is the default webpage on 192.168.17.10
I cant use SSL 443 as the standard of mailenable wont allow this on this version.
So I have traffic coming in on port 80 directed to internal ip 192.168.17.14
The D/C is 192.168.17.10 where mailenable is installed.
We are only using a Netgear DG834G until we decide on what hardware we require and work out the budget.
It doesnt appear that this modem can do port translation like a cisco... is this possible am I missing an easy solution here?
If you could let me know if possible to get around this would be great.
Thanks in advance
I have just set up the following to host websites and email for our clients -
Host - Server 2008R2 (ENT)
Virtual OS1 -(STD) Server2008R2 - D/C has the program mailenable std version installed on it for clients mail.
Virtual OS2 -(STD) WebServer2008R2 - Websites
The problem is our clients checking their webmail which also needs to come through on the same port as the webserver.(Which is on s different internal IP) I tried to make this port 8080 but I obviously have this wrong as it is not working all I get is the standard IIS7 page come up which is the default webpage on 192.168.17.10
I cant use SSL 443 as the standard of mailenable wont allow this on this version.
So I have traffic coming in on port 80 directed to internal ip 192.168.17.14
The D/C is 192.168.17.10 where mailenable is installed.
We are only using a Netgear DG834G until we decide on what hardware we require and work out the budget.
It doesnt appear that this modem can do port translation like a cisco... is this possible am I missing an easy solution here?
If you could let me know if possible to get around this would be great.
Thanks in advance
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
9
4
2- +1
16 Comments
Active 4 days ago
These guys show how to do it in a telnet session because the web interface doesn't do it.
http://forums.thinkbroadband.com/dslrouter/3277739-netgear-dg834g-or-other-router-port-redirection.html
http://forums.thinkbroadband.com/dslrouter/3277739-netgear-dg834g-or-other-router-port-redirection.html
I would recommend having 2 wan ip's and a router/firewall that can handle multiple wan-ip.
Makes things much easier....
Makes things much easier....
Active 4 days ago
When it's time to upgrade check out the sonicwall probably tz210. Don't add wifi, do that third party.
thanks guys..
Aaron I had actually looked at port forward yesterday have you used before? should I go ahead and do this? they seem to have a good guarantee to get it working. Had a quick look into sonicwall will take a closer look this weekend.
I hear what you are saying zulumike but it would end up being a little too costly new line, new modem, time.... down the track we will.
cheers
Aaron I had actually looked at port forward yesterday have you used before? should I go ahead and do this? they seem to have a good guarantee to get it working. Had a quick look into sonicwall will take a closer look this weekend.
I hear what you are saying zulumike but it would end up being a little too costly new line, new modem, time.... down the track we will.
cheers
Aaron..Sorry totally missed the link you were talking about re:telnet shall try that this weekend thanks
You don't need two modems/two lines to have two ip's.
You can have two ip-adresses on the same line (at least from most isp's I know). And that doesn't always cost much.
But you need a firewall that can handle that. I use Fortigate and are very pleased with that.
You can have two ip-adresses on the same line (at least from most isp's I know). And that doesn't always cost much.
But you need a firewall that can handle that. I use Fortigate and are very pleased with that.
Your right Zulumike, thought about that yesterday... definetly would need to change the modem though... going to try the telnet option if that doesnt come off will probably go for your option cheers.
Aaron,
Finnally got to try the telnet made it to the ip tables section but have become a little lost.
Have you tried this by any chance? there is quite a few scenarios but to clarify what I have is -
192.168.17.10 - port 25 for mailserver
192.168.17.14 - port 80 for webserver
need a port for webmail on 192.168.17.10 so according to below I should be able to follow this and get it to redirect to another port that I specify and webmail will be come possible or I can change the port for webserver.
Quoted from your weblink -
"First I suggest you create a new rules chain for your redirection. I used the following command : iptables -N MyRules
Next you can add as many rules as you which in your new chain. For example : iptables -A -i ppp0 -p tcp -m tcp --dport 100 -j DNAT --to-destination 192.168.0.87:101
This rule tells that any TCP packet coming from interface ppp0 and targeting port 100 is to be translated so as to be forwarded to port 101 on machine 192.168.0.87
Next you have to trigger this rule. I did so by inserting it in the PREROUTING chain of the translation table, using the command :
iptables -t nat -I PREROUTING 5 -i ppp0 -j MyRules"
cheers
Finnally got to try the telnet made it to the ip tables section but have become a little lost.
Have you tried this by any chance? there is quite a few scenarios but to clarify what I have is -
192.168.17.10 - port 25 for mailserver
192.168.17.14 - port 80 for webserver
need a port for webmail on 192.168.17.10 so according to below I should be able to follow this and get it to redirect to another port that I specify and webmail will be come possible or I can change the port for webserver.
Quoted from your weblink -
"First I suggest you create a new rules chain for your redirection. I used the following command : iptables -N MyRules
Next you can add as many rules as you which in your new chain. For example : iptables -A -i ppp0 -p tcp -m tcp --dport 100 -j DNAT --to-destination 192.168.0.87:101
This rule tells that any TCP packet coming from interface ppp0 and targeting port 100 is to be translated so as to be forwarded to port 101 on machine 192.168.0.87
Next you have to trigger this rule. I did so by inserting it in the PREROUTING chain of the translation table, using the command :
iptables -t nat -I PREROUTING 5 -i ppp0 -j MyRules"
cheers
Active 4 days ago
No I haven't done this
Do the first command as is. Then do this for the second:
iptables -A -i ppp0 -p tcp -m tcp --dport 8080 -j DNAT --to-destination 192.168.17.10:80
Then the third Is the same as the example.
Remember if you mess-up you can always reset the router so track any important info and backup your config.
Do the first command as is. Then do this for the second:
iptables -A -i ppp0 -p tcp -m tcp --dport 8080 -j DNAT --to-destination 192.168.17.10:80
Then the third Is the same as the example.
Remember if you mess-up you can always reset the router so track any important info and backup your config.
Ok had a chance to login and attempt to setu,p but ran into the issue of iptables not found attempting to resolve... if you know how to install or how to resolve would be handy. In the meantime I shall keep looking.
Cheers
Cheers
Solution - Was to move Mail Enable to the Web Server to resolve for now thanks for your suggestions.
This was the quickest and easiest for now but I believe both comments from aarontomosyl and zulmike would be of benefit down the track.
Featured Post
Disaster Recovery as a Service is one go-to solution that revolutionizes DR planning. Implementing DRaaS could be an efficient process, easily accessible to non-DR experts. Learn about monitoring, testing, executing failovers and failbacks to ensure a "healthy" DR environment.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
In the hope of saving someone else's sanity...
About a year ago we bought a Cisco 1921 router with two ADSL/VDSL EHWIC cards to load balance local network traffic over the two broadband lines we have, but we couldn't get the routing to work consi…
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention.
Multiple USB devices need t…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses
Course of the Month11 days, 22 hours left to enroll
752 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.