<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=Content-Type content="text/html; charset=us-ascii">
<meta name=Generator content="Microsoft Word 12 (filtered medium)">
<style>
<!--
/* Font Definitions */
@font-face
        {font-family:Wingdings;
        panose-1:5 0 0 0 0 0 0 0 0 0;}
@font-face
        {font-family:"Cambria Math";
        panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
        {font-family:Calibri;
        panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
        {font-family:Tahoma;
        panose-1:2 11 6 4 3 5 4 4 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
        {margin:0cm;
        margin-bottom:.0001pt;
        font-size:12.0pt;
        font-family:"Times New Roman","serif";}
a:link, span.MsoHyperlink
        {mso-style-priority:99;
        color:blue;
        text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
        {mso-style-priority:99;
        color:purple;
        text-decoration:underline;}
span.EmailStyle17
        {mso-style-type:personal;
        font-family:"Calibri","sans-serif";
        color:#1F497D;}
span.EmailStyle18
        {mso-style-type:personal-reply;
        font-family:"Calibri","sans-serif";
        color:#1F497D;}
..MsoChpDefault
        {mso-style-type:export-only;
        font-size:10.0pt;}
@page Section1
        {size:612.0pt 792.0pt;
        margin:72.0pt 72.0pt 72.0pt 72.0pt;}
div.Section1
        {page:Section1;}
-->
</style>
<!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=EN-NZ link=blue vlink=purple>
<div class=Section1>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>Still no luck here. What it boils down to, is that when placing
the XS (eth1 - LAN) behind a router with NAT, in order to allow the XS web
service to be visible on the external WAN side of the router, what are the
required LAN IP settings including netmask and firewall settings, including
port forwarding or DMZ Host or other. Anna, you seem to have been able to do
that but I can’t replicate without more info on your router/firewall
settings.<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>I have tried everything I can think of and the XS is not visible
from the external network. Only need to be able to see Moodle, etc, (not interested
in registering XOs on the external network) <o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<div>
<p class=MsoNormal><b><span style='font-size:9.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>David Leeming<o:p></o:p></span></b></p>
<p class=MsoNormal><span style='font-size:8.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>Solomon Islands Rural Link <br>
P.O.Box 652 Honiara, Solomon Islands<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:8.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>+677 7476396 (m) +677 24419 (h)<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:8.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>www.leeming-consulting.com<o:p></o:p></span></p>
</div>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<div>
<div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0cm 0cm 0cm'>
<p class=MsoNormal><b><span lang=EN-US style='font-size:10.0pt;font-family:
"Tahoma","sans-serif"'>From:</span></b><span lang=EN-US style='font-size:10.0pt;
font-family:"Tahoma","sans-serif"'> server-devel-bounces@lists.laptop.org
[mailto:server-devel-bounces@lists.laptop.org] <b>On Behalf Of </b>David
Leeming<br>
<b>Sent:</b> Sunday, 31 October 2010 11:38 a.m.<br>
<b>To:</b> 'Anna'<br>
<b>Cc:</b> 'XS Devel'<br>
<b>Subject:</b> Re: [Server-devel] Bridging XS to another network<o:p></o:p></span></p>
</div>
</div>
<p class=MsoNormal><o:p> </o:p></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>Anna,<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>What you describe below is what I am trying to do (see the net
diagram in my other email). I only want apache/Moodle/wiki to be available to
the external network (your “regular LAN”). You’ll see that I have
a simple WRT54G router bridging but no matter what I try, I can’t see the
apache service through the router. Can you say what Wan and LAN settings you
used for your router? <o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>I used<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>WAN – fixed 192.168.1.88 / 255.255.255.0<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>LAN – fixed 172.18.0.88 / 255.255.255.0<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>Port 80 forwarded from WAN to 172.18.0.1 (or DMZ host with
171.18.0.1)<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>In this set up: <o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>If I try to ping from the XS to 172.18.0.88 it is OK, if I try
to 192.168.0.88 it says network unreachable.<o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'>But if I use a PC hooked up on the eth1 network, with fixed IP
172.18.0.89 / 255.255.255.0 (for example) I can ping the WAN address and
beyond. This is what leads me to think it needs one extra step with route, or
it may be something to do with the WRT LAN setting and XS having different
netmasks. You can see I am reaching at straws a little </span><span
style='font-size:11.0pt;font-family:Wingdings;color:#1F497D'>L </span><span
style='font-size:11.0pt;color:#1F497D'> </span><span style='font-size:
11.0pt;font-family:Wingdings;color:#1F497D'><o:p></o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:Wingdings;
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal><span style='font-size:11.0pt;font-family:"Calibri","sans-serif";
color:#1F497D'><o:p> </o:p></span></p>
<p class=MsoNormal style='margin-bottom:12.0pt'>By way of example, here's a
setup I've done in the past:<br>
<br>
Regular LAN:<br>
XS (eth0) 192.168.1.20<br>
My Desktop 192.168.1.6<br>
"XO A" 192.168.1.7<br>
<br>
XS LAN:<br>
XS (eth1) 172.18.0.1<br>
"XO B" 172.18.96.2<br>
<br>
On the XS LAN, "XO B" can go to <a href="http://schoolserver">http://schoolserver</a>
or 172.18.0.1 and see the default Moodle homepage. It can also register
to the XS and all that good stuff, cause it's getting its IP address from the
XS's DHCP server.<br>
<br>
On theRegular LAN, my desktop and "XO A" can't see the Moodle
homepage at 192.168.1.20 until I open port 80 in the firewall on the XS using
lokkit (or edit iptables or whatever). Since "XO A" is not
getting its IP address from the XS, it won't be able to register. If
"XO A" wants to use the XS's Jabber server, that port needs to be
opened in the XS firewall. "XO A" can now manually set the
Jabber server to 192.168.1.20 and collaborate. If you want to use Moodle,
not being able to register to the XS is a huge issue. Apache access works
fine, though.<o:p></o:p></p>
</div>
</body>
</html>