User profile for user: boonchunt
boonchunt Author
User level: Level 1
0 points

Router/Firewall /Port Forwarding Setting for Web Server

Hi,

From my previous post: http://discussions.apple.com/thread.jspa?threadID=2025392&tstart=0

Now I've problem setting up routing and forwarding port, below is my setting:

Here is my Router Advanced Configuration Settings:

*Public Routed Subinterface* Disable
Check ENABLE to create a route from the Internet to the public network specified below.
Router Address: *_(What should this be if I'd need to use this for setup?)_*
Subnet Mask: *_(What should this be if I'd need to use this for setup?)_*

*Public Proxied Subnet (NAT/Routed)* Enable
This value will determine the public addresses available for using applications with your home network devices.
This information is provided by your ISP
Broadband Network: 116.14.93.26 / 255.255.254.0
Subnet Mask: 255.255.255.0


I've port forward to my computer (with server) 192.168.1.66 which allow port 80 for web server. Any Idea?

Macbook, Mac OS X (10.5.7)

Posted on Jun 8, 2009 8:50 PM

Reply
7 replies
User profile for user: boonchunt
boonchunt Author
User level: Level 1
0 points

Jun 9, 2009 12:26 AM in response to Camelot

I've Port Forward open the HTTP Port on my Computer which IP is 196.168.1.66

192.168.1.66
Skype UDP at 192.168.1.68:56882 (598)
Skype TCP at 192.168.1.68:56882 (598)
Skype UDP at 192.168.1.68:56882 (575)
FTP Server
HTTP
VNC


But, no port is open or direct to my computer when access from Internet Address : 116.14.93.26(External IP Address) using browser. How do I direct 116.14.93.26 to my server computer?
Reply
User profile for user: boonchunt
boonchunt Author
User level: Level 1
0 points

Jun 9, 2009 1:17 AM in response to Camelot

Here is more details:

192.168.1.66
FTP Server............ FTP (file transfer protocol) server............TCP 21..........116.14.93.26
HTTP....................TCP 80.......................................................................116.14 .93.26
............................TCP 80.......................................................................116.14 .93.26
VNC ....................TCP 5500 .................................................................. 116.14.93.26
............................TCP 5800....................................................................116.14. 93.26
............................TCP 5900....................................................................116.14. 93.26


Now, how do I configure so that the address: 116.14.93.26 access to my computer Web Server???

Message was edited by: boonchunt
Reply
User profile for user: Camelot
Camelot
User level: Level 9
58,599 points

Jun 9, 2009 10:27 AM in response to boonchunt

Assuming your site is Ban Soon Sewing Machine, I can get to your site just fine.

Are you trying to access your site from inside your network, or outside?

If inside, it may be that your router can't handle NAT connections from the inside network back into the inside network - some routers can and some can't.

If that's the case your options are to:

1) replace the router with something that supports this NAT bounceback

2) Run a separate internal DNS server for internal clients, where this DNS server knows your web site's internal address rather than the external one.

3) Add the IP and name of your site to /etc/hosts. This will cause your Mac to talk directly to the server, rather than trying to talk through the router.
Reply
User profile for user: boonchunt
boonchunt Author
User level: Level 1
0 points

Jun 9, 2009 5:01 PM in response to Camelot

Yes, I'm accessing it internally. I'm bit confuse over the NAT bounceback that you mention.

There are two option rerouting, view from my router 2WIRE 2701HGV-E:

*Public Routed Subinterface* Disable
Check ENABLE to create a route from the Internet to the public network specified below.
Router Address:
Subnet Mask:

*Public Proxied Subnet (NAT/Routed)* Disable
This value will determine the public addresses available for using applications with your home network devices.
This information is provided by your ISP
Broadband Network: 116.14.93.26 / 255.255.254.0
Subnet Mask:

I'm not sure what and which to be use?

I've ask my friend to visit and they did saw the same contents as you did. Really thanks for your kind help.
Reply
User profile for user: MrHoffman
MrHoffman
User level: Level 10
146,641 points

Jun 9, 2009 7:16 PM in response to boonchunt

Yes, I'm accessing it internally. I'm bit confuse over the NAT bounceback that you mention.


To make this connection, you have a couple of choices:

1: use the internal IP address and connect directly to your web server on its internal address.

2: utilize an IP router (router and NAT and firewall device) that is capable of recognizing that the IP address requested in the out-bound network connection from your web browser on your LAN is targeting your public static IP address and to then "bounce" the outbound IP traffic back onto your LAN. This where the outbound IP traffic and the web server is reflected or routed or bounced back to your server. In particular, routed back through your NAT and port forwarding processing at the firewall and along to the target server on its internal address.

In simplest terms, this "bounceback" is a firewall that allows internal IP traffic destined for your public IP address to be looped through the NAT and port-forwarding and back inwards.

Some IP routers can do this. It appears that your present IP router cannot.

I don't know the details of the 2WIRE 2701HGV-E device implementation, but (in the absence of a firewall rule blocking this traffic) this IP "bounceback" routing generally either works, or it doesn't.
Reply
User profile for user: boonchunt
boonchunt Author
User level: Level 1
0 points

Jun 10, 2009 1:53 AM in response to MrHoffman

I check the Firewall Advanced Settings and saw nothing about NAT. I think I've to give up trying on the router to configure NAT.

There is NAT Setup in Mac OS X Server, any chance trying that out?


Inbound and Outbound Control
Checking the box allows the associated traffic type through the firewall.

Outbound
HTTP
HTTPS
FTP
Telnet
SMTP
DNS
NetBIOS
POP3
IMAP
NNTP
IRC
H323
All Other Protocols


Inbound
Remote Management
NetBIOS
Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

Router/Firewall /Port Forwarding Setting for Web Server

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up