Ticket Options
Question Details
TICKET ARCHIVE -> Advanced Advanced Networking (multihoming)
Macpadawon - Jun 24, 2005 - 1:53 am
Hello I come to the great pool of Mac Power users in hopes to find an answer/clarification to my problem, so here it is! The Materials: I have two ISP's One is DSL the other Cable. I have 4 routers 3 wireless, and I have the ability to put 2 Ethernet Cards in a powermac if needed. THE DESIRED SETUP: I would like to have my DSL line act as a dedicated webserver/local file server. The DSL line is the slower of the two, but it's a STATIC IP and it's STABLE. It's also set up to allow my to host from it (port 80) I would like to use the one computer as a webserver, on a different ip then have it also act as a LAN file server from a private IP. Ala 192.x.x or 10.0.x.x So how can I set this up? I have tried hooking up 2 ips, with 2 different routers all in to ONE network switch, but that caused all kinds of strange problems, of which one was a double dhcp issue?? If i connected to one network router it would still DHCP assign me the ip's coming from the other router!!! Strang! So i have turned DHCP off on one of the routers. I still have issues, I just need some setting strait! Anyone out there wish to help? It's a tuff one! Thanks! JM
P.S. I am advanced, so you may be short and to the point.
P.S.S. I have my G3 tower that is the server it is configed to run os 9 or 10.3. It's currently booted into os 9. I have my G4 quicksilver tower as a workstation, and I have a Mini as a workstation, I also have 2 laptops ibooks, as roaming workstations. All running Mac os x. I would like to have the G3 server be a local music store for all my music. As well as serve a website.
P.S. I am advanced, so you may be short and to the point.
P.S.S. I have my G3 tower that is the server it is configed to run os 9 or 10.3. It's currently booted into os 9. I have my G4 quicksilver tower as a workstation, and I have a Mini as a workstation, I also have 2 laptops ibooks, as roaming workstations. All running Mac os x. I would like to have the G3 server be a local music store for all my music. As well as serve a website.
marqrdt - Jun 24, 2005 - 11:52 am
Hi Justin,
I think you would benefit from turning off DHCP on both routers and set a static IP on your web server. Could could also run a DHCP server on that machine to server addresses to the PowerBooks. It's freely available at http://www.isc.org/index.pl?/sw/dhcp/
I run it on my PowerMac. It gives you greater control over how addresses are distributed to your network.
I would also strongly suggest using NAT on both your Cable and DSL routers if available and avoid giving a public IP to any computer on your network. You can then forward public ports (25,80,443 for email/http/https) to an internal address. This is much safer than opening your Mac up to the internet.
I don't know how your DSL and Cable connections are setup, but you could benefit from using both by setting up your server to run NAT for your laptops, so they would use the Cable connection for thie internet traffic. You would have to create an alias for your interface and setup your second interface card to do the network address translation for the laptops. This would be done in your ipfw rules on the web/file server. Then, on the alias interface (en0_1), set the default gateway to the cable connection's interface, assuming it has a separate address.
I imagine something like this:
DSL router running NAT:
public address: whatever my ISP feels like
private address: 192.168.4.1
Cable router running NAT:
public address: whatever:
private address: 192.168.8.1
Web server setup:
en0: 192.168.4.2 (default gw 192.168.4.1)
en0_1: 192.168.8.2 (default gw 192.168.8.1)
en1: 10.92.100.1 (2nd NIC card attached to laptop network over ehternet or wifi)
Run NAT and DHCP server on 10.92.100.1
On DSL router, forward ports 80 and 443 (and 25 if you're doing email) to 192.168.4.2
Bind apache to en0 and en1 if you want internal clients to access your website.
With FreeBSD, you could bind NFS and AppleTalk to an interface, not sure on how to do this on OS X, though it's likely you could.
I hope this gives you some ideas.
Regards,
Paul M.
I think you would benefit from turning off DHCP on both routers and set a static IP on your web server. Could could also run a DHCP server on that machine to server addresses to the PowerBooks. It's freely available at http://www.isc.org/index.pl?/sw/dhcp/
I run it on my PowerMac. It gives you greater control over how addresses are distributed to your network.
I would also strongly suggest using NAT on both your Cable and DSL routers if available and avoid giving a public IP to any computer on your network. You can then forward public ports (25,80,443 for email/http/https) to an internal address. This is much safer than opening your Mac up to the internet.
I don't know how your DSL and Cable connections are setup, but you could benefit from using both by setting up your server to run NAT for your laptops, so they would use the Cable connection for thie internet traffic. You would have to create an alias for your interface and setup your second interface card to do the network address translation for the laptops. This would be done in your ipfw rules on the web/file server. Then, on the alias interface (en0_1), set the default gateway to the cable connection's interface, assuming it has a separate address.
I imagine something like this:
DSL router running NAT:
public address: whatever my ISP feels like
private address: 192.168.4.1
Cable router running NAT:
public address: whatever:
private address: 192.168.8.1
Web server setup:
en0: 192.168.4.2 (default gw 192.168.4.1)
en0_1: 192.168.8.2 (default gw 192.168.8.1)
en1: 10.92.100.1 (2nd NIC card attached to laptop network over ehternet or wifi)
Run NAT and DHCP server on 10.92.100.1
On DSL router, forward ports 80 and 443 (and 25 if you're doing email) to 192.168.4.2
Bind apache to en0 and en1 if you want internal clients to access your website.
With FreeBSD, you could bind NFS and AppleTalk to an interface, not sure on how to do this on OS X, though it's likely you could.
I hope this gives you some ideas.
Regards,
Paul M.
Macpadawon - Jun 25, 2005 - 3:39 am
Hi Paul, Thanks for your excellent response. Just what I asked for! One last question, do you have any experience hosting a website from your home or office, PC using a router that has a web-based interface? It seems if you use Port forwarding or mapping to punch port 80 through, it will sometimes conflict with the Router interface. That is to say, I think there may be "issues" with hosting a web-server on port 80, as many routers us a web-based config, and thus interferes?? Do you know of such issues or incompatibilies? I talked with a linksys support and they they told me to put the webserver in the DMZ. That certainly would be a solution, what do you think? I would like to keep the webserver "protected within the NAT" solution, but if I have to or if you think it would be best to DMZ it I shall! 
Thanks for your input! JM
Thanks for your input! JM
IF THIS IS YOUR QUESTION AND YOU WISH TO RESPOND, LOGIN HERE FIRST.
