<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=Content-Type content="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 12 (filtered medium)">
<style>
<!--
/* Font Definitions */
@font-face
{font-family:Wingdings;
panose-1:5 0 0 0 0 0 0 0 0 0;}
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman","serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-reply;
font-family:"Calibri","sans-serif";
color:#1F497D;}
..MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page Section1
{size:612.0pt 792.0pt;
margin:72.0pt 72.0pt 72.0pt 72.0pt;}
div.Section1
{page:Section1;}
-->
</style>
<!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=EN-NZ link=blue vlink=purple>
<div class=Section1>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>Anna,<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>What you describe below is what I am trying to do (see the net
diagram in my other email). I only want apache/Moodle/wiki to be available to
the external network (your “regular LAN”). You’ll see that I
have a simple WRT54G router bridging but no matter what I try, I can’t
see the apache service through the router. Can you say what Wan and LAN
settings you used for your router? <o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>I used<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>WAN – fixed 192.168.1.88 / 255.255.255.0<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>LAN – fixed 172.18.0.88 / 255.255.255.0<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>Port 80 forwarded from WAN to 172.18.0.1 (or DMZ host with
171.18.0.1)<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>In this set up: <o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>If I try to ping from the XS to 172.18.0.88 it is OK, if I try
to 192.168.0.88 it says network unreachable.<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>But if I use a PC hooked up on the eth1 network, with fixed IP
172.18.0.89 / 255.255.255.0 (for example) I can ping the WAN address and
beyond. This is what leads me to think it needs one extra step with route, or
it may be something to do with the WRT LAN setting and XS having different
netmasks. You can see I am reaching at straws a little </span><span
style='font-size:11.0pt;font-family:Wingdings;color:#1F497D'>L <o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:Wingdings;
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal style='margin-bottom:12.0pt'>By way of example, here's a
setup I've done in the past:<br>
<br>
Regular LAN:<br>
XS (eth0) 192.168.1.20<br>
My Desktop 192.168.1.6<br>
"XO A" 192.168.1.7<br>
<br>
XS LAN:<br>
XS (eth1) 172.18.0.1<br>
"XO B" 172.18.96.2<br>
<br>
On the XS LAN, "XO B" can go to <a href="http://schoolserver">http://schoolserver</a>
or 172.18.0.1 and see the default Moodle homepage. It can also register
to the XS and all that good stuff, cause it's getting its IP address from the
XS's DHCP server.<br>
<br>
On the Regular LAN, my desktop and "XO A" can't see the Moodle
homepage at 192.168.1.20 until I open port 80 in the firewall on the XS using
lokkit (or edit iptables or whatever). Since "XO A" is not
getting its IP address from the XS, it won't be able to register. If
"XO A" wants to use the XS's Jabber server, that port needs to be
opened in the XS firewall. "XO A" can now manually set the
Jabber server to 192.168.1.20 and collaborate. If you want to use Moodle,
not being able to register to the XS is a huge issue. Apache access works
fine, though.<br>
<br>
<o:p></o:p></p>
</div>
</body>
</html>