Folks - thanks for the answers - just what I needed... Rgds Greg -----Original Message----- From: redhat-list-bounces@xxxxxxxxxx [mailto:redhat-list-bounces@xxxxxxxxxx] On Behalf Of Jim Maul Sent: Tuesday, February 01, 2005 8:18 PM To: General Red Hat Linux discussion list Subject: Re: Access to own webserver via internet.. Ed Wilts wrote: > On Tue, Feb 01, 2005 at 07:44:09PM +0100, Greg wrote: > >>Not sure whether this is the right place to ask. > > > Questions related to RHEL 3 should go to taroon-list, not redhat-list. > > >>Anyhow, I have a RHEL AS 3u4 running as webserver. It's placed in the >>firewall DMZ (smoothwall CS 3). >> >>Everything works fine - except this foolish thing, which I'm not able to >>solve: >> >>While access to the server via name (say http://xyz.ee) from any external PC >>works fine, it is not possible to acces the server via name from PC's on the >>LAN (Smoothwall, green interface). >> >>The server and the PC's on the LAN share the same external ip-adress (but >>are internally on separate nets (safe 'green' zone and DMZ 'orange' zone). > > > This is a really strange setup... > > The webserver should have separate IP addresses for the internal and > external interfaces. The nameserver then needs to resolve the name to > the right one, answering with the internal interface address for your > internal hosts, and with the external interface address for your > external hosts. Bind 9 has a split personality mode that allows you to > do things like this. > > My guess is that your nameserver is returning the external IP address to > your internal clients. You then do not have a route to that subnet. > We actually have the exact same setup but are using an ISA server instead of the smoothwall. We have no internal dns and rely solely on the ability of the ISA to do lookups. Because of this, we are unable to use http://www.host.com, internally, we simply use http://hostname of the machine and it works fine. But if you really must use the real web address, you will have to change your dns as stated above. -Jim -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list
