Print

Please login or register.
1 Hour 1 Day 1 Week 1 Month Forever
Login with username, password and session length

[evenmosbek]

Hello, i have an issue that i can access my homeserver thru the remote webinterface that hp mediasmart offers.

As default the server is trying to configure a/any router on the network using UPnP service to open port 80,443,4125 for this service to work.

Also I have a torrentserver application using webUI interface so i can add/delete torrens from a remote location using http://ip:port/webui as an web address.

I have already opened the necessary ports on my DFL-210 for this.

But my issue is that I can't access my webpages anyway. I feel like I’m on to something with "Address Translation" but can figure it out completely.

Anyone that that could help me out a bit please?

Thanks in avanse!


EDIT: new topic because the last one did not describe my problem.

[l8ians]

Hi evenmosbek,

we can diagnose the issue,

> Can you access my home server through the Local web interface?
> Make sure that the list of ports are open , using some port scanning utilities.
> Reconfigure the ip_rules to allow the particular service through the wan interface

If you still have the same issue , Please post the logs

[evenmosbek]

Thanks for quick replay!

I might be blind (but I was doing this until 0600 last Friday) but I was 110% sure that all port was open.
After checking again it seems that the port that I added inn Objects>Services does not work properly.

80 and 443 is open and no problem there probable because it is already default services in the firewall.

This is my Service setting for port 4125;
Name: MS_RDP
Type: TCP
Source: 0-65535
Destination: 4125

At Ip_Rule the service is "MS_RDP" at both SAT and NAT

Any idea what i migth have done wrong... or rigth 

This is the guide i used to open my ports http://www.dlink.com/support/faq/?prod_id=2393

[l8ians]

OK , Thats nice

> In the second ip-rule, the action selected is " ALLOW " ?
> Did you try to access the server from any other remote location ?
might be some ports are blocked in the remote end.
can you please get the log and post it here ?

[evenmosbek]

Okay, first i reloaded the last known configuration that worked properly so now i can access my WHS UI from my browser as well with the torrent UI.

now i have changed the "NAT" ip-rule to "Allow" and completed  port check on my firewall from a external and local connection.
both showing that only 80 and 443 are the only ports that are open.

4125 still appears to be locked.

Here is some picture just in case

Service


Nat allow


Sat

Sat2

[evenmosbek]

Is there anyone that knows why the new service does not work properly?
or why i can open 4125 on my firewall?

[Fatman]

The SAT is before the Allow right?
You don't need a "New Port" on the SAT Tab of your SAT Rule.
Please check All-to-One Mapping checkbox on the SAT Tab of your SAT Rule.

Other than that it all looks right, I would check if you don't have rules with a higher precident and that all the literal values are correct.

Also if you switch the Allow fir a NAT does it work?
Is there a GW set on the target machine?

[evenmosbek]

The SAT is before the Allow right?
You don't need a "New Port" on the SAT Tab of your SAT Rule.
Please check All-to-One Mapping checkbox on the SAT Tab of your SAT Rule.

The SAT is before/above the Allow.
also checked the All-to-one mapping

Also if you switch the Allow fir a NAT does it work?

tryed it but now posetive result.

Is there a GW set on the target machine?

what is that?


i tried something else just for fun. Instead of using the new service for port 4125 i tried to use default rdp 3389 service instead just to check if the settings in general was correct, and that worked with no problem - Port checker confirms that it is open.
if i edit the default rdp 3389 service to map port 4125 instead (a service for port 4125 does still exist but not in use) it failed, so same result with the edited default service as the new 4125 service.


so after failing and failing and failing again i can see anything else that there is something wrong with the new user added service for port 4125.

again ill try to explain how im adding a new service:

Object > Services
add new TCP/UDP Service
name: 4125
type: tcp/udp
source: 0-65535
destination: 4125
Save!


so, what im i doing wrong

[Fatman]

If a rule for 3389 works but a rule for 3389 with a redirect to 4125 doesn't work then the problem is most likely going to be on your PC.  Please ensure you don't have any firewalls running or anything like that on the PC.

Failing the obvious I would start taking packet captures on that PC to see if you can see the incoming packets to 3389 as well as 4125.

When I asked if your PC had a GW, I was referring to a default gateway setting.  If the PC can get on-line then it does have a default gateway.

[evenmosbek]

No firewall settings on my WHS or my pc. but i change the ALG option on the new service from "None" to "Http-out..." and port checker confirm that the port was open and i was able to access my WHS web interface

[Fatman]

Well I guess all is well that ends well, but that is at least slightly confusing.