Topic: Network structure (novice doubts)

[flaviove]

 Hi All,
I would like to know if the structure below works and if users from local network getting Ip from the SME box can have access to the web server.
Thanks in advance
Flávio



                           __________     
                           | internet |
                           -----------
                                  |ISP IP
                          ___________
                          VDSL Modem
                          ------------
                                  |192.168.25.1
                             _______
                               Switch
                              --------
                                 |   |
                   _________|   |________
                   |192.168.25.2              |192.168.25.254
         ____________________      __________
         SME Server Gaeway\DC      WEB Server
         -----------------------      -----------
         |   |     |     |....|
        WS   WS    WS    WS   WS (DHCP-10.0.0.1)

[bunkobugsy]

If you realy want to use SME this isn't the way to go.
Instead swap the switch with SME, put the VDSL in bridge mode (if possible, ask isp for help) so that SME has real world IP (and if possible static), set up some dns name for it and you're ready for mail, webmail, external IMAP secure.
The Web server will reside on the inside of the SME NAT, users can acces it (assign static IP for it). For it to be visible from outside you just need to port forward relevant port through SME (TCP 80 usually). It's external IP would be the real world (static) IP you got from your ISP or DNS name if you managed to set up. Read the SME manuals, good luck.

[Daniel B.]

I do not agree that putting the web server in the LAN with a port foward for it to be accessible from the outside would be better. To answer the original question, yes, it'll work, provided that you add the correct www entry on SME's DNS server (so LAN clients knows that www = 192.168.25.254)

[bunkobugsy]

Right, but next he'll ask how to make it visible from internet, so he'll need to port forward in VDSL.
After that he'll need mail working on SME, more port forwards in VDSL for SMTP, IMAPS, webmail.
Horde will bump in webserver, put webserver or webmail on different ports, etc.
SME is a great NAT router and firewall, might handle it better than some VDSL modem.

[flaviove]

Hi Daniel,

Thank you for your fast reply.
I am with you, I think it isn´t a good idea to get my webserver on my lan.

yes, it'll work, provided that you add the correct www entry on SME's DNS server (so LAN clients knows that www = 192.168.25.254)

or put an entry in hosts file on each client. Right?(less than 30 clients)

Thank so much.
Flávio

[flaviove]

Hi bunkobugsy,

Thank you for your fast reply.
That is another idea that I have to consider. The only thing is that I have to put my webserver(outside access) on the lan and it I think is a little worrying. But I am going to know if it is possible to get bridge on vdsl box.
Thank you so much.

Flávio

[flaviove]

you add the correct www entry on SME's DNS server (so LAN clients knows that www = 192.168.25.254)

Could you please point me how to do that entry?
Thanx in advance

[TerryF]

Pretty well explained here: http://wiki.contribs.org/SME_Server:Documentation:Administration_Manual:Chapter13#Creating_New_Hostnames

[flaviove]

Pretty well explained here: http://wiki.contribs.org/SME_Server:Documentation:Administration_Manual:Chapter13#Creating_New_Hostnames

Hi TerryF

Thank you so much for your directions.
Everything now is up and running. I am going to put below the steps that I did. Firstly to know if it was the right way, and secondly to help others novices like me, with the same doubts.

1. On Domains´s tab server-manager painel I added an entry "my-external-site.com"
Domain name: my-external-site.com
Brief description: what ever you want
i-bay: Primary
Domain DNS servers: Resolve locally

2. On Hostnames and addresses´s tab server-manager painel I added an entry "website"
Hostname: website
Domain: my-external-site.com
Comment: what ever you want
Location: Remote