IIS (or other server) behind firewall

Hi all
tryying to run IIS behind a linux firewall, IIS starts fine, and can acces my site just fine locally, but no one outside the LAN can access it, I forwarded port 80 but still no joy, I dialled up on a modem thus bypassing the firewall, and all is well, so im 100% sure its the wall, has anyone any suggestions?


Next time you wave - use all your fingers
16 answers Last reply
More about server firewall
  1. Have you ever gotten anything else past the wall successfully (e.g. FTP, Telnet, etc.)?

    <i>It's always the one thing you never suspected.</i>
  2. Thanks for the quick reply,

    Yes, telnet (port23), and ftp (ports 20/21) are forwarded from my firewall box to the box running the server(s) they work just fine, I forwarded port 80 in exactly the same way but it doesnt work :(
    btw my firewall/router is a p60 running redhat linux 7.1


    Next time you wave - use all your fingers
  3. Have you tried telnetting to port 80 from outside? At least to see if IIS picks up? This would eliminate some weird browser anomoly. Just wondering...

    <i>It's always the one thing you never suspected.</i>
  4. just tried it now, not something that crossed my mind, it timed out, as I ran it on my modem before, it HAS to be my wall, I just dont understand it at all :(


    Next time you wave - use all your fingers
  5. Here's a thought - is your ISP possibly blocking port 80 (due to problems with code red, etc.)?

    <i>It's always the one thing you never suspected.</i>
  6. hmm, possibility, as I said, I dialled up on a modem (different isp) and was fine, when I get home I'll connect my cable directly to the box running iis and see what happens, but im sure its the wall blocking it somehow.
    Unfortunately I cant ask my isp as they dont allow web/ftp servers (not that they even know what one is!!)

    Next time you wave - use all your fingers
  7. I'm a little confused about what the 2 different things you're doing (modem access vs. whatever the other access is). Can you explain in more detail?

    <i>It's always the one thing you never suspected.</i>
  8. Port 80 blocking is EXTREMELY common...I know my ISP does it <grrr....>

    "If you teach a child to read, then he or her will be able to pass a literacy test" - George W.
  9. ok
    trying to host my site on my pc
    pc with site is windows, which is behind a linux firewall

    setup iis, could connect local but no external could connect
    plugged modem into windows box and went online, everyone able to connect- this just proved that iis was running fine.

    Since then, I have plugged straight into the cable modem bypassing my linux firewall, and no probs at all, so port 80 isnt blocked by my isp so it has to be the wall, but as I said, port 80 is being forwarded, any suggestions.


    Next time you wave - use all your fingers
  10. Run it on port 8080.

    Apache is really easy to config like this, but I don't know about IIS.

    "If you teach a child to read, then he or her will be able to pass a literacy test" - George W.
  11. When you test without the modem, how are you doing this? Getting a friend to try to connect? See, when you say you're dialing out with a modem, it would seem to me that you still have to come in via your ISP. Thats why I'm still confused.

    <i>It's always the one thing you never suspected.</i>
  12. ok
    when I dialed on the modem, I dialed direct from the box running iis, and disconnected the rj45 so this was basically a box running iis via a modem conection (used different isp so this was basically a box that could have been anywhere on earth)
    connected from another pc on my cable conenction- just to prove that iis was setup and working corretly- which it was as I could view my site.
    I've since tried it on port 8080 and its exactly the same, I really dont understand why, unless it needs another port - like ftp needs 20 as well as 21 ? Im lost for ideas :(


    Next time you wave - use all your fingers
  13. OK, so you're saying you connected your IIS server to the Internet via a ppp connection through a dialup ISP, then tried to reach your website via the cable connection? I see. That doesn't prove that the wall is at fault. New question: Is there any way to tell the linux firewall to log all incoming requests? This way maybe you can at least see th initial http request come in, and maybe get a clue as to why it's not being forwarded.

    <i>It's always the one thing you never suspected.</i>
  14. I logged all traffic and it showed my ip accessing my box on port 80 and being accepted :(
    as for connecting on the modem, that totally bypassed the firewall and I connected fine, I've also tried other prts and the same happens :(


    Next time you wave - use all your fingers
  15. CALV, could you post the relevant sections from your config files and the log entries you mentioned? Just wondering what they look like. Thanks.

    <i>It's always the one thing you never suspected.</i>
  16. i could, Im at work just now, will do it when I get home, thanks for the help.


    Next time you wave - use all your fingers
Ask a new question

Read More

Firewalls IIS Servers Networking