Connect. Communicate. Collaborate. Securely.

Home » Kerio User Forums » Kerio Control » Routing local http traffic?
  •  
ebatte

Messages: 169
Karma: 0
Send a private message to this user
Any clients behind KWF cannot connect to my internal web server that is also behind KWF. The only way I have successfully been able to do it is by editing the hosts file on the client machine.

Without the edited hosts file pointing the domain name to the internal IP, I get the error message that the connection was "actively refused by the host".

Is this the result of a malformed rule?

Thanks,
Eric
  •  
an2ny79

Messages: 109
Karma: 2
Send a private message to this user
what is your traffic policy?
You cannot use domain name to point locally (if you're using ISP's DNS server), unless you setup FQDN using your own DNS server or edit host file locally (which you're already doing).

another way is..

- KWF must be installed in different machine (my suggestion)
- Set your client workstations to point their DNS and Gateway to KWF
- Enable KWF's DNS Forwarding (CONFIGURATION\DNS FORWARDER)
- Edit KWF's host file (under Simple DNS resolution)

With this, you don't need to go to all local station to change their local host file. Workstation will use KWF's host file instead.

[Updated on: Thu, 26 June 2008 12:38]

  •  
ebatte

Messages: 169
Karma: 0
Send a private message to this user
KWF is installed on a different machine.

Client workstations point to my internal DNS server (not KWF), but they do point to FWK for the gateway.

DNS forwarding and the host file are edited already
  •  
an2ny79

Messages: 109
Karma: 2
Send a private message to this user
If Client DNS not pointed to KWF, then you just need to create DNS entry (internal DNS) that would forward domain to local IP..

Therefore, this isn't KWF's traffic rule error. Beside you don't use KWF to translate or forward/MAP connection to another computer.

Computers behind KWF can communicate without going or passing thru KWF unless, client will transact outside your network (internet). Then that's the time packet will pass thru KWF which act as GATEWAY between Local and Global connection.
  •  
ebatte

Messages: 169
Karma: 0
Send a private message to this user
I seemed to have solved this issue by creating a new rule in KWF that does a NAT translation to my internal server for those services and ports that I need.
  •  
an2ny79

Messages: 109
Karma: 2
Send a private message to this user
Glad to hear that..

Anyway, if you have further problem, it would be very easy for us to help if you could provide visual Traffic Policy you created... It would be helpful and it would give us a quick hint what possibly went wrong.
Previous Topic: routing table terror
Next Topic: Logs, Security
Goto Forum:
  


Disclaimer:
Kerio discussion forums are intended for open communication between forum members and may contain information and material posted by members which may be useful in learning about Kerio products. The discussion forums are not intended to provide technical support for any specific product. Any information implied or expressed in the discussion forums is that of the posting member. Kerio is in no way responsible for the information posted in the forums, or its accuracy. Kerio employees may participate in the discussions, but their postings do not represent an offical position of the company on any issues raised or discussed. Kerio reserves the right to monitor and maintain the forums to promote free and accurate exchange of information.

Current Time: Sat Oct 21 05:02:02 CEST 2017

Total time taken to generate the page: 0.00400 seconds
.:: Contact :: Home ::.
Powered by: FUDforum 3.0.4.