No it isn’t public, only VPN Port is routed by the provider router. Sadly we can’t configure it, but we we will call the provider to give us one internal address, where every traffic is routed to. If this works I’ll give you credentials.
I’ve a generally question to dedalo. What happens if a client asks for connection.
The gateway (dedalo server) tries to route to icaro portal web site, but does it always do this through red interface? If so, how can we change, because the icaro server is at the green interface.
We also tried to setup icaro server to the red network, but it doesn’t work also.
Of course the next problem is the DNS, only the nethserver where dedalo runs knows the icaro address, but I think the DNS server is only reachable from green LAN.
Hope somebody can clarify these things.
My Problem seems to be with dedalo, not icaro. Yesterday I connected my dedalo to an icaro installation from Markus. Markus gets the portal page with a client at his dedalo installation, I don’t get it running with my dedalo.
if I’m right you should have icaro (CentOS 8) and dedalo (NethServer) in the same network, in this case you should have the red of NethServer connected to CentOS.
Is that you configuration?
At the moment the icaro interface is connected to nethservers green interface, but also tried to connect to nethservers red interface.
The Nethserver is for dedalo , vpn and for firewall, but also tried to disable things like ips. There are no special firewall rules on it.
Ok, Nethserver need to be connected to icaro via red interface, that is what usually happens when icaro is on a remote server.
So try to connected red if of nethserver and green of icaro.
If you don’t need a green on your nethserver you can leave it disconnected.
Hi guys, it seems, that we can’t get it running without a connection from outside to port 80 and 443.
I have a firewall with a green (LAN) and a red (WAN) interface.
Dedalo Server is connected with its red (WAN) interface to the firewall green (LAN) interface, dedalos green interface is a fake interface and dedalos 3rd interface is connected to the hotspot with dedalo hotspot role.
icaro (now on CentOS 7) is at the firewalls green interface
Dedalos first DNS is changed to the firewall address, which is an internal DNS and knows the domain of icaro.
Everything seems to work.
I can curl the icaro domain from a client at the green firewall network
a client at the hotspot network can solve the icaro domain with a nslookup
but I can’t reach the portal site.
The same configuration with a public known domain an a letsencrypt certificate works fine.