Robert Zagarello wrote:
Phillip, I sympathize with your network issues. All I can offer is some general guidelines to assist indebugging where the real problem(s) are occurring. Sometimes network problems are far fromstraightforward and yes can be a pain in the arse. What I suggest is for you to try to simplify your access issues from outside your network using small-step test scenarios (and I apologize if this sounds way too general, not to sound like you haven't tried doing this already, but just in case you haven't tried this thinking - often it is easier to help someone than to help yourself). Sometimes all it takes is to hear something truly irrelevant to help with a problem, and that is what is best about forums.
Thanks Robert,I understand this very well as I can usually help a client step through a problem better than I can help myself. I think it is because we inherently have too much knowledge about what we are trying to do, kinda a forest for the trees issue.
I can sftp and ssh (telnet) to the server from the local net. ( it is the only way I can go from one computer to the other) I need to find away to login to a remote site and ssh back to the server, right now I only have the three computers on my local lan for testing. I am assuming this means SSH is working.For example: 1. Get your internet access working with SSH before trying to get it to work with your web service.
2. Another is to try accessing using your IP address only when testing, because this removes the name translation dependency.
I try both each time I change something.
Good idea, as I am having access tested by a friend outside my network and he leaves his computer on 24/7 and more than likely does not exit his browser. I'll check this out. On the local side I have done this and I can see the website by the name or IP, BTW I have assigned a special port to avoid the ISP blocking access ie port 8222 instead of port 80.3. It has been my experience that browser access via web service introduces issues not normally involved with network access. For example, if you haven't rebooted or restarted your web browser and your address on your web server has changed, your browser may "remember" it in cache and not accept the new IP, leading one to believe it is a network issue when in fact it is the stupid browser (IE does this for example).
I use DHCP only for the windows machines that are used by the rest of the users. For my Linux machines I have assigned IP addresses outside the router/DHCP range due to application dependencies that need the same IP to function properly.4. Remember that your web server needs to find you on the remote side and this is what hosts and perhaps resolv.conf on your web server is good for, and that different OSs may handle resolv.conf differently (I haven't had the need to mess with resolv.conf, for example, in NetBSD, because I use DHCP).
I did not try to put the router's IP in the servers host file because when I type the "route" command it router IP is the default.5. Remember that your web server, if on a private LAN, is NATted through your router, and that you have to tell different pieces of network access software the right IP for a given name to work. For example, I've had to put my router's IP in my web server's hosts file because otherwise it will translate itself to its private LAN address when using its FQDN and won't go to DNS to find it (this doesn't mean it will work that way for another OS, for example).
Is this not the same idea?
If I think of anything else that may be completely irrelevant that may trigger a thought to help solve a problem I'll send again. Good luck... BZAG =============================== --- NetSuporte <netsuporte@xxxxxxxxxxxxxx> wrote:For the novice the message it sends for DDNSconfiguration is use TZO or don't configure DDNS here.My objective is to have complete control, for now Iam trying both the DynDNS and the TZO (free versions) until I figure this out and it is working. So far Apache2 is running fine my problem is access to my web server from outside my local net.Perhaps this is not where to go for my DNS issues. Iam very grateful for any help I can get though ( I tend to overcomplicate things). As it goes I am using Debian 3.1 and I am findingthat a few things have changed since I read about DNS configuration, as an example the instructions step-by-step I have to setup a DNS server are not valid with Debian as they decided to split the "named.conf" file into several small conf files and move the "named" stuff all into /etc/bind. It makes since but for a beginner jumping from file to file to understand examples is a pain in the ass.Bottom line it is still not working my Californiaoffice cannot find my website in Brazil.One document I read says use local IP in the/etc/host for my system, another says use the "assigned" IP from my ISP which is displayed on the router interface and via the DynDNS/TZO control panels. Also I have conflicting examples of what to put in "resolv.conf" and how to assign my IP's or a single IP to 1) my system 2) the web host/server 3) the DNS server 4) virtual hostsOnce I sort this out I should have enough knowledgeto back out of DynDNS and TZO as they only add additional "Domain"issues the domain I want is not used anywhere and I don'tlike the "free" choices I am given. I don't want to work "in the box" or "outside the box" I want to work as if there is "no box" after all who said I have to pay to use the Internet, it is bad enough I need to pay to access it, however I offset this cost by using VOIP to eliminate by phone bills, but that is another forum all together.Please keep the advice and suggestions coming. thanks too all who respond ( even the other old folks ;-) -Philip Stephen Cook wrote:but you can still setthis just means that you CAN use their service,DynDNS.org or no-ip.comup port forwarding and such manually and useto set up (not by aor whatever. the built-in option is just simplerwhole lot either), at the price of actually havingto pay.NetSuporte wrote:Robert, I also used the free service of DynDNS the model I have is ( network everywhere )LynkSyscable/DSL router Model Number:NR041 This is on the DDNS configuration screen insidethe router:to a dynamic WAN IPDDNS (Dynamic DNS) allows assigning a domain nameaddress, making it easier to host Web, FTP, or otherservers.for a free 30 dayThe Dynamic DNS service is powered by TZO.com. To use the Dynamic DNS Services, please sign uptrial<http://www.tzo.com/MainPageDownload/30days_free.html>To order the TZO service, click here<http://www.tzo.com/order.html>services:To manage your domain name and relatedControlpanel.tzo.com<http://Controlpanel.tzo.com>TZO Password Key: -philip Robert Zagarello wrote:NetSuporte,I use a D-Link DI-624 that doesn't complain.Whowants to charge you? I did not use DynDNS's subscription $$$, only their free service. Itmeansyou have to use one of their domain names. I'd like to know the Linksys model you are usingso Ican tell people to avoid it ! Thanks. BZAG ================================= --- NetSuporte <netsuporte@xxxxxxxxxxxxxx>wrote:Thanks Robert Right off I ran into a snag my Lynksys router insists I use TZO.COM and they charge a fee after 30 days. That really sucks as I discovered this aftersigninghomelinux.com A redirected hoston with DYNDNS.ORG Where they assigned me a domain ofname of quecaixa.webhop.net with the redirected URL of www.quecaixa.com.br:8222 cloaked - yes cloak = www.quecaixa.com.br Not sure what the cloaked stuff is aboutexactly butwith or with out I still cannot get to my server outside my own net. So I will try to enable DMZ and see if ithelps.Philip Robert Zagarello wrote:Here are some guidelines for running a privatewebeverything. This is actuallyserver on your home network for internet accessibility. I think I've includedwhat I am using myself (am running NetBSD) and it is working: 1. Use Dynamic DNS and a 3rd party DDNSserviceprovider like dyndns.org. There should be anentrythis.for DDNS in your home cable/DSL router forYoudon't need an internet registered domain andDNSaddress - the DDNS service will do it. Youdon'tneeda static IP address from your ISP for yourrouter.2. Install and run the SSH daemon for remoteadmintoyour web server. 3. On remote Windows PCs use PuTTY and PuTTY'scommandline utilities for up/downloading files fromyourwebserver. 4. On your cable/DSL home router put an entryfortheremote IP addresses in your firewall,specifyingthehost and SSH ports, and route them to your webserver.5. Put an entry in your router's firewall fortherouter itself, as in the previous step, totestinternet accessibility from your home network.Ifyouput an entry for your web server's host namein ahomenetwork PC's hosts file, you will access thewebserver without going out to the internet. Ifyouusethe web server's FQDN (full host plus domainname,fully qualified domain name), your home PCwillactually request name translation from yourISP'sDNS,which is your router, and then direct yourrequesttoyour router's WAN side port, effectivelytestingforinternet accessibility. 6. In your web server's host file put yourDDNSaddress and FQDN (full host plus domain name,fullyqualified domain name) you got from your DDNSserviceprovider. Don't put in the web server'sprivateLANaddress. Note the IP address may changebecauseyouare using DDNS - but it doesn't change thatfrequently- so you may want to run a script that checksitdaily. 7. You may want to put a simple non-dotted up-to-15-character name for your ISP's DNS totestname resolution from your web server when youhaveproblems using nslookup for example (you havetospecify the server using nslookup because thewebserver is on your home network). 8. You can also put a simple non-dotted up-to-15-character name (say, just the hostnameonlyof the FQDN) for the web server in your homePC'shosts file to permit local testing of your webserver.9. In rc.conf (I am running NetBSD) on thewebserver, put in the DDNS FQDN as the hostnameandsimilarly its domain part for the domainname. There are entries above for the IP addressthat aremade manually so these have to be checkedperiodicallyif changed by your broadband ISP. (This doesnotinclude the DDNS entry in the router whichwillupdateyour DDNS service entry automatically). BZAG =======================================---------------------------------------------------------------------The official User-To-User support forum of theApache HTTP Server Project.See<URL:http://httpd.apache.org/userslist.html>for more info.To unsubscribe, e-mail:users-unsubscribe@xxxxxxxxxxxxxxxx" from the digest:users-digest-unsubscribe@xxxxxxxxxxxxxxxxFor additional commands, e-mail:users-help@xxxxxxxxxxxxxxxx---------------------------------------------------------------------The official User-To-User support forum of the Apache HTTP Server Project. See<URL:http://httpd.apache.org/userslist.html> formore info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx---------------------------------------------------------------------Apache HTTP ServerThe official User-To-User support forum of theProject. See <URL:http://httpd.apache.org/userslist.html>for more info.To unsubscribe, e-mail:users-unsubscribe@xxxxxxxxxxxxxxxx" from the digest:users-digest-unsubscribe@xxxxxxxxxxxxxxxxFor additional commands, e-mail:users-help@xxxxxxxxxxxxxxxx---------------------------------------------------------------------Apache HTTP ServerThe official User-To-User support forum of theProject. See <URL:http://httpd.apache.org/userslist.html>for more info.To unsubscribe, e-mail:users-unsubscribe@xxxxxxxxxxxxxxxx" from the digest:users-digest-unsubscribe@xxxxxxxxxxxxxxxxFor additional commands, e-mail:users-help@xxxxxxxxxxxxxxxx---------------------------------------------------------------------Apache HTTP ServerThe official User-To-User support forum of theProject. See <URL:http://httpd.apache.org/userslist.html>for more info.To unsubscribe, e-mail:users-unsubscribe@xxxxxxxxxxxxxxxx" from the digest:users-digest-unsubscribe@xxxxxxxxxxxxxxxxFor additional commands, e-mail:users-help@xxxxxxxxxxxxxxxx---------------------------------------------------------------------The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx--------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
--------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|