|
||||||||||
It's a routing/NAT problem, as also explained by Fred (that's why you can ping ;-). A workaround can consist in adding a local DNS entry in the m0n0wall's DNS server that points to your INTERNAL ip. Go to 'Services' and open 'DNS Forwarder' click on the + sign to add an 'exception' host: wonko domain: com ip: your web server's internal IP description: xxxxxx Of course, you will need to have the DNS forwarder enabled and your clients on DHCP (or point to m0n0wall as primary DNS). As long as resolving is done by the m0n0wall, wonko.com will point to your internal web-server. Mind you that windows clients mess around with the priority of DNS servers (based on performance/response-time), so if the ISP's DNS gets on top, wonko.com won't work anymore. I guess this will be no problem since the m0n0wall is on your lan. Hope this helps! Regards, Joachim -----Original Message----- From: Ryan Grove [mailto:ryan at wonko dot com] Sent: donderdag 19 juni 2003 8:09 To: m0n0wall at lists dot m0n0 dot ch Subject: [m0n0wall] Question: LAN->WAN->LAN I got my net-4501 today and pounced on it instantly, but there's just one thing I haven't been able to figure out about m0n0wall. What little firewall-related knowledge I have comes from setting up my Linksys BEFSR41, which should give you an idea of just how little I know. Please be gentle. So here's the problem. I've got a web server on my LAN and I have a NAT rule set up to allow external traffic to hit it. That's working fine. However, when I attempt to browse to the external address (wonko.com) from a machine in my LAN, the connection is refused. I've tried everything I can think of to fix this, but nothing works. WAN->LAN connections work, LAN->WAN connections work, but LAN->WAN->LAN connections are refused. Am I just completely missing something, or is this currently not possible with m0n0wall? -- Ryan Grove ryan at wonko dot com http://wonko.com/ --------------------------------------------------------------------- To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch ----------------------------------------------- MISSION STATEMENT ----------------------------------------------- Oce enables its customers to manage their documents efficiently and effectively by offering innovative print and document management products and services for professional environments. ----------------------------------------------- DISCLAIMER ----------------------------------------------- This e-mail message and any attachment are intended for the sole use of the recipient(s) named above and may contain information which is confidential and/or protected by intellectual property rights. Any use of the information contained herein (including, but not limited to, total or partial reproduction, communication or distribution in any form) by other persons than the designated recipient(s) is prohibited. If you have received this e-mail in error, please notify the sender either by telephone (0032-2-729.48.11) or by e-mail and delete the material from any computer. Oce-Belgium/Oce-Interservices is nor responsible for the correct and complete transfer of the contents of the sent e-mail, neither for the receipt on due time. This e-mail message does not bring about a contractual obligation for Oce-Belgium/Oce-Interservices. Thank you for your cooperation. For further information about Oce-Belgium/Oce-Interservices please see our website at www.oce.be ----------------------------------------------- |