Re: Routing a subdomain....how?

Anton wrote:
Hi,

We recently have an appliance that sits on our network but needs access to the internet. It is sitting on our network with an IP address of 192.168.xx.xx. I also have a webserver that is connected directly to an external router/ADSL modem. All incoming port 80 traffic is pointed there.

I have the domain hosted records (MX and A) records pointing to the the external IP address of the router. To get traffic to the appliance I have done the following:

1. created a subdomain of subdomain.mysite.com.au to be directed to the external WAN IP address. This has been done by my ISP.

Now, the appliance uses port 442. I have allowed traffic on that port through to the external NIC of the SBS box. I have ran the Email and Internet wizard to allow the port to be opened on the BSB firewall, (only have standard...no ISA). I have also added the port to be re-directed to the appliances IP address on the NAT / Firewall settings under Routing and Remote Access.

With all this, I still can't see the appliance website from the web. Where am I going wrong? Any help would be appreciated.


The sub-domain isn't relevant here, it's the port number. Presumably if
you enter either the URL http://subdomain.mysite.com.au:442 or just
http://mysite.com.au:442 you can reach the appliance? If not, then you
need to find where the blockage is. Possibly try connecting from your
webserver, to confirm that the SBS forwarding is working.

Clearly, you can only forward port 80 to one destination, and you are
currently doing that. A browser will expect to find a web server on port
80, and a secure web server on 443, unless you tell it otherwise.

Unfortunately, if you need to access this appliance without using the
:442 on the end of the URL (which users will forget), then you need a
second public IP address, rather than a sub-domain DNS record, and also
a router which can handle two public IP addresses. They pretty well all
can do that internally, but most don't have any means of configuring
it through their user interfaces.
.

Relevant Pages

  • AW: QualysGuard - VA/PT appliance
    ... What you need to run the applicance is an ip address inside the LAN, a network jack and access to the Internet via port 443. ... the appliance allows for this. ...
    (Pen-Test)
  • Re: Port 3060? What in the hell is going on?
    ... >> a service that expects return traffic to port 3060, ... but since I do not use or allow Kazaa anywhere ... > on my network, there is no reason that someone ... Kazaa site and set rules with my Watchguard FW appliance and block all ...
    (comp.security.firewalls)
  • Re: Cant get out on port 80
    ... >>I have an appliance hooked up that needs to send packets out on port 80. ... The ISA service is not running. ... Have you sniffed the network traffic before and after the router? ...
    (microsoft.public.security)
  • Re: ISA Remote Access Stops Working
    ... Since you are using a "pre-configured" appliance... ... Change the TS port on your ISA appliance to something else, say, port ... Remote Desktop Disconnected ... Remote connections might not be enabled or the computer might be too ...
    (microsoft.public.isa)
  • Re: 56k dial up on laptop 802.11G ?
    ... >and Watchguard FW appliances. ... He said that if it can't sort out non-HTTP traffic to port 80 it ... FW appliance or the WRT54G do what he wants. ... VPN Client: ...
    (alt.internet.wireless)