Security

Secure Home | Search | About

Lost Password?

Networking Firewalls

get this group's latest topics as an RSS feed

add this group's latest topics to your My MSN content

add this group's latest topics to your My Yahoo content

add this group's latest topics to your Google content

Subject

Author

Date

Security

Yvonne

06-06-2005

Leythos

T. Sean Weintz

Posted by Yvonne on June 6, 2005, 11:23 am

If you were Registered and logged in, you could reply and use other advanced thread options

Hi!

I wonder if anyone can help me. I have a little network at home with 4
computers connected to a router (netgear) and I have an adsl-connection.
What I want is to make the network as secure as possible. I want one of the
computers to be the maincomputer.

I plan to have a http-server, a ftp-server and maybe a smtp-server in my
network. I am using no-ip.

I also wonder if anyone know what I do to make the other computers in the
network connect to the http-server with the external IP? Now I need to use
the internal IP. I have changed so I can use the external IP with the
computer where I have the http-server. I did that in the hostfile where I
wrote 127.0.0.1 and the domain-name.

I hope you understand what I mean since english isn't my natural language.

Thanks in advance
Yvonne

Posted by Leythos on June 6, 2005, 12:56 pm

If you were Registered and logged in, you could reply and use other advanced thread options

@telia.com says...

> Hi!

> I wonder if anyone can help me. I have a little network at home with 4

> computers connected to a router (netgear) and I have an adsl-connection.

> What I want is to make the network as secure as possible. I want one of the

> computers to be the maincomputer.

> I plan to have a http-server, a ftp-server and maybe a smtp-server in my

> network. I am using no-ip.

Bad news - don't do it until you understand all the security
implications. Based on the questions you are asking, and I'm not
insulting you, you don't have fully secured HTTP/FTP/SMTP services
setup.

> I also wonder if anyone know what I do to make the other computers in the

> network connect to the http-server with the external IP? Now I need to use

> the internal IP. I have changed so I can use the external IP with the

> computer where I have the http-server. I did that in the hostfile where I

> wrote 127.0.0.1 and the domain-name.

You don't want to use a public ip, you want to use the DNS Name, and to
do that, you want to setup a PUBLIC DNS record (A) and point it to your
computers PUBLIC IP (routers public IP), same for the MX record. On the
inside of your network you need to run a DNS service also, you duplicate
the public DNS names on your internal DNS server and then change the
internal DNS pointers to use the internal IP addresses.

So, it would look like this:

Public: mail.mydomain.com 123.123.123.123 (A)
Public: mail.mydomain.com (MX) 10
Public: mydomain.com 123.123.123.123 (A)
Public: www.mydomain.com 123.123.123.123 (A)
Public: ftp.mydomain.com 123.123.123.123 (A)

Inside: mail.mydomain.com 192.168.0.10 (A) Assuming you use 192.168.0.10
Public: mail.mydomain.com (MX) 10
Public: mydomain.com 192.168.0.10 (A)
Public: www.mydomain.com 192.168.0.10 (A)
Public: ftp.mydomain.com 192.168.0.10 (A)

Inside your network your computers point to the DNS server you setup
inside your LAN, not your ISP's DNS server.

--
--
spam999free@rrohio.com
remove 999 in order to email me

Posted by T. Sean Weintz on June 6, 2005, 3:37 pm

If you were Registered and logged in, you could reply and use other advanced thread options

Yvonne wrote:

> I also wonder if anyone know what I do to make the other computers in the

> network connect to the http-server with the external IP? Now I need to use

> the internal IP. I have changed so I can use the external IP with the

> computer where I have the http-server. I did that in the hostfile where I

> wrote 127.0.0.1 and the domain-name.

You need a router that supports that. What you are looking to do is
often referred to as "NAT loopback" or "double natting". Most of the
consumer level routers (ie: netgear, dlink, linksys, etc) do not support
this.

Similar Threads	Posted
New site dedicated to security conferences : www.security-briefings.com	May 6, 2006, 11:17 am
Security programs 2005 - , Firewall programs 2005 -, Antivirus programs 2005 -, APPDEV DOT NET SECURITY, Linux Security and Firewall programs 2005 -, CiscoWorks ( CW ) Security programs 2005 - ,	February 25, 2005, 5:03 am
Home Security eBook - Home Security - How to Protect Your Family and Your Property - Home_Security.exe (0/2)	November 5, 2004, 5:25 pm
BGP Security	October 4, 2005, 2:27 am
Network security	December 10, 2004, 5:09 am
Security Software	May 15, 2005, 3:41 pm
Security Breach	June 28, 2005, 7:06 pm
Network Security Job	July 8, 2005, 11:26 pm
Possible security problem?	July 28, 2005, 12:16 am
Network security	September 4, 2005, 12:39 am

The site map in XML format XML site map