[Freedombox-discuss] public + private http services
nick.m.daly at gmail.com
Thu Jul 18 13:59:51 UTC 2013
On Wed, Jul 17, 2013 at 11:51 PM, Timur Mehrvarz
<timur.mehrvarz at riseup.net> wrote:
> On 15.07.2013 16:04, Timur Mehrvarz wrote:
>> How do you make sure some http services are only visible on the internal
>> network - while other services are visible on all networks?
It depends on how your internal network is set up.
Ultimately, you'll need to open different ports on your server for
intra-network and external-network connections. If you have a
separate firewall device, make sure the firewall forwards connections
(ports) to the server's external connection ports.
Outside -- Firewall -- Server -- Inside
Outside -- Server/Firewall -- Inside
This is good context to your question:
To see an example of how this might work on a specific computer, check
out a particular firewall like Arno's IP Tables Firewall. You might
want to run this in a VM so you don't hose everything on your main
# apt-get install arno-iptables-firewall
# dpkg-reconfigure arno-iptables-firewall
# apt-get remove arno-iptables-firewall
Pay particular attention to the "internal" and "external" port
screens. They're how you define exactly what you're asking about.
More information about the Freedombox-discuss