NethServer Version: 7.9.2009
Hello community, I have a quick question and completely assuming I am missing something simple. I have a nethserver with two nics installed (eth0, eth1). Eth0 (IP: 10.0.20.101) is on the subnet 10.0.20.0/24 (Server) with a gateway 10.0.20.1, Eth1 (IP: 10.0.10.101) is on the subnet 10.0.10.0/24 (workstations) with no gateway specified.
The issue I am having is a computer (IP: 10.0.10.95) on workstation subnet is able to ping the eth0 interface (IP: 10.0.20.101), however the computer is unable to access the cockpit interface on https://10.0.20.101:9090. The computer can access the cockpit interface at 10.0.10.101:9090. The computer is able to ping 10.0.20.101, and SSH into 10.0.20.101, but not access the cockpit interface. Wondering if someone might be able to clue me in on the reason.
Thank you for your time.
Need to allow port 9090 and ip 10.0.20.101 to workstation subnet in firewall
Thank you for the reply. I am on a fresh install, currently no firewall rules as both of my interfaces are considered green. Do I still need a firewall rule for locally routed lan traffic? I can ssh into 10.0.20.101 from a workstation on 10.0.10.0/24 subnet without making a firewall rule.
if firewall is not installed make sure both subnets ie 10.0.20.0/24 and 10.0.10.0/24 are listed in trusted networks also if you havent got firewall i assume youve setup your nethserver in dmz on your router as what your technicaly trying to accomplish is port forwarding same port just different ip on seperate subnet
also if you can access the webpage at 10.0.10.101:9090 and the pc is on the same subnet it is working correctly as even though it’s a different ip it’s still the same page just think of it like accesseing the same web gui through 2 different doors 10.0.10.101 and 10.0.20.101
Another way would be to set a fqdn (host of your nethserver) in nethserver dns with ip of 10.0.20.101 and access the page through https://yournethserver.com:9090
but if i read your reply wrong and you have firewall installed but havent configured anything then just configure it in portforwarding ie 10.0.20.101 → 9090
Thanks again for a quick reply. I am not going to use nethserver as a firewall, or for any routing functions. I am only going to be using it as a domain controller… Both local networks are listed as trusted, and nethserver has two network interfaces, one attached to lan network, and server network. All routing functions are done by physical router / gateway.
Disregard. I removed the red interface option for the webserver and now it is working as expected. Thanks for the help!