I have windows 2008 R2 server. It is located behind a firewall called Fortigate.
I need to access an application on local iis from outside.
I opened a free account on cloudflare for this. I forwarded the A record of localsite.mydomain.com to my own ip address.
I opened a port in Firewall and forwarded it to my server.
My aim is only to be able to access the port on the server from localsite.mydomain.com, other than that, by typing the ip address, port scanning programs and so on. I don't want it to be accessed.
I thought of typing the cloudflare ip address from the server's firewall, but the cloudflare ip address is constantly changing. How can I do it?
Related
I make a web site to my local. I set bindings local.com and www.local.com. I add hosts xml to
127.0.0.1 local.com
127.0.0.1 www.local.com
So, I can connet on my pc like
local.com,
www.local.com,
192.168.1.35
But another pc on my network can't conenct with friendly name
www.local.com,
local.com,
But same pc can connet with ip
192.168.1.35
How can that another pc connect with friendly name ?
IP Addresses are the numerical identification for each device on a computer network.
Named Addresses invented, because remembering each device Address's turned to a difficult job.
So someone must know's which names must be converted to which IP Address.
DNS Servers are responsible to do this translation. But you done that locally. Actually you don't have a DNS Server on your local System, So you can't tell to others that "WWW.Something.COM" is my Address.
If you didn't connected to the internet, you must establish a DNS Server or done this task manually in all clients:
https://helpdeskgeek.com/networking/edit-hosts-file/
Running a DNS Server is another task. you can search for DNS Server applications like https://simpledns.com/ or you can setup a DNS Server using Windows Server. for both scenarios you need to tell to your clients to add your DNS Server Address to their network Adapter settings.
or If you are connected to the Internet, you can Use a NoIP to register a free Address:
https://www.noip.com/
you then need to download an application (In Noip.com) to monitor IP changes, it will monitors your IP address and it changes and then tells to NOIP.com to translate your address into your current IP address.
Actually NOIP will registers your address globally around the Internet network and each one who can access to the internet is able to reach to your address.
I have a registered domain name, www.aaaDomain.com, assigned to ip address xx.xx.xx.xx . I set up my site on IIS8 to use the ip address xx.xx.xx.xx and port 8020 for my website. I can connect to the website when I type xx.xx.xx.xx:8020 in a browser but I cannot connect to the website when I use www.aaaDomain.com:8020
Also, I have another website on this same server as my Default website. When I type just the domain name without the port number, my default website comes up (because DNS does not allow adding port numbers) just like when I type in the ip address without the port number.
What am I doing wrong?
Here is what my site binding looks like on IIS8.
As you already have an existing site running on the server you should check your security settings on both the Windows firewall and any other security/firewall settings you have - It sounds like you have not opened the additional port which you have just configured in IIS.
Check to see if you can ping the new site by its domain name - that will verify that you have the correct DNS setup, you can also try & browse to it via the server console (or remote desktop) if that works then its security setting somewhere blocking your access. Even if the ping request times out it should still resolve the name to an IP address for you to check. You may find that ICMP is also blocked.
If you just changed your dns record, be aware that you should wait up to 72 hours for the dns to replicate after changing your dns record.
I have a REAL IP. XXX.XXX.XX.XXX, with that, i have DNS, Subnetmask, gateway and secondary dns from my ISP provider.
I have connected my PC (windows 10) with that setting in TCP/IP v4. And network is fine for outgoing.
Now I build a simple html web site and created a site in IIS 10. in Binding, I used the REAL IP, with port 80. From that pc, after hitting the IP Address, I am getting into the site. But from outside the network, via internet, If I hit the IP, nothing comes except Problem loading page with respond timeout.
How can I access the IP from outside internet?
I created a IIS site in my windows server 2012 virtual machine. I want to be able to access it online on my android phone. I can access it locally on the server. The ip address of the server is 199.86.19.2 and for the IIS site its 192.168.113.133. Also the server is a dynamic ip. I have tried using an online site called noip.com to make a domain. I created a domain
mydomain.no-ip.biz and gave it the ip address 192.168.113.133. I even installed the client program so it keeps my ip up to date. However when I visit mydomain.no-ip.biz. it says it cannot be found.
Does anyone know what is wrong here?
Thanks.
192.168.113.133 is your local IP address on your network. 199.86.19.2 is your external IP address that your IPS assigned to your server (until it expires). I'm assuming you are doing this at home so you would need to make sure if you have a router, you need to configure it to set it up to port forward to your local IP address.
Set your 'mydomain.no-ip.biz' ip address to 199.86.19.2 and make sure your router (if you have one) is forwarding to 192.168.113.133.
I have a problem configuring IIS for my needs. Let's start with the situation that I have:
Application listening on IP address A.A.A.A on port 443.
IIS website listening on IP address A.A.A.A on port 80.
IIS website listening on IP address B.B.B.B on port 443.
My machine is configured to have two IP addresses A.A.A.A en B.B.B.B. My application only binds to the A.A.A.A:443 endpoint. I want that IIS only uses A.A.A.A:80 and B.B.B.B:443. The site binding are correct, but IIS still binds to both A.A.A.A:80, A.A.A.A:443, B.B.B.B:80 and B.B.B.B:443. Because it binds to A.A.A.A:443 my own application cannot listen to it anymore and fails to start.
I have tried to use the netsh http add listener, but I cannot restrict IIS to use specific IP/port combinations. I can only specify IP addresses, so it will still bind to A.A.A.A:443.
Does anyone know a solution? I think it's kind of crazy that IIS binds to all available IP addresses even when I set the site binding to only a single IP address.
It is not IIS that is listening to the IP. It is the HTTP driver which is utilized by many services, not just IIS. Unfortunately the only to accomplish what you want is for the application outside of IIS to utilize the HTTP driver. I believe this easiest way is to use WCF.
See Exposing WCF Services Via HTTP when not hosted in IIS
This can be done with netsh, see the instructions here
http://support.microsoft.com/kb/954874
You can tell IIS which IP address to bind too.