• March 28, 2024, 08:30:07 AM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  

News:

This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Author Topic: DFL-800 Canīt reach websites with DNS  (Read 9113 times)

thomas.alrek

  • Level 1 Member
  • *
  • Posts: 3
DFL-800 Canīt reach websites with DNS
« on: August 25, 2014, 08:03:38 AM »

Hi.

I have a minor issue with a DFL-800 i set up.
I am hosting a website on the public WAN address, and it works great. I can reach the server from the outside, using both the dns name, and the ip.

But, when I try to reach the server from inside my LAN, it just times out.
I have read some other topics about how I have to configure NAT Loopback, but I can't get it to work.

My network is setup like this:

WAN1 -> DFL-800 -> LAN, no DMZ.


I tried to make a rule for http outbound (SERVER_IP -> LAN -> CORE -> WAN1_IP), both a SAT rule, and a NAT rule, and a "ALLOW" rule, but none seems to help.


Could anyone here point me in the right direction, I am totally stuck.

 :)

Best regards,
Thomas
Logged

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: DFL-800 Canīt reach websites with DNS
« Reply #1 on: August 25, 2014, 08:31:55 AM »

Link>Welcome!

  • What region are you located?

Is there any information in the User Manual about this?

I recommend that you phone contact your regional D-Link support office and ask for help and information regarding this. We find that phone contact has better immediate results over using email.
Let us know how it goes please.
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

thomas.alrek

  • Level 1 Member
  • *
  • Posts: 3
Re: DFL-800 Canīt reach websites with DNS
« Reply #2 on: August 25, 2014, 09:02:20 AM »

Thanks for the reply. I am located in Norway.

I must add that I can reach the server if I use its internal LAN ip address. But then I would have to either setup a local DNS, or modify all clients hostfile, and I was hoping to avoid this.

I tried to setup NAT Loopback as described in one of the supplemental manuals I found on D-Links ftp, but those where written with DMZ in mind. I tried to adapt it as well as I could without the DMZ configuration, but I couldn't get it to work.

If no one have some smart trick, or anything, I will try to call D-Link, but I was hoping someone else has had this problem before.
Logged

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: DFL-800 Canīt reach websites with DNS
« Reply #3 on: August 25, 2014, 09:20:56 AM »

Can you try the configuration with using DMZ?
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.

Rara Avis

  • Imperator
  • Level 2 Member
  • **
  • Posts: 76
Re: DFL-800 Canīt reach websites with DNS
« Reply #4 on: August 26, 2014, 09:17:29 AM »

Make a port forward like the one you made to allow the WAN to access the server, use the following rules.

SAT lan/lannet core/wan1_ip SAT_Dest Server_IP
NAT lan/lannet core/wan1_ip

Your web server will see all the traffic as coming from the DFL itself, but it should work.

A DNS split horizon is a more elegant solution if you want to keep the server on the LAN however.  If only to limit the unnecessary NAT.

a DMZ is a better solution yet, separate your risk classes.
Logged
Nullum magnum ingenium sine mixtura dementiae fuit. - Seneca
There has never been a great genius without a element of madness.

thomas.alrek

  • Level 1 Member
  • *
  • Posts: 3
Re: DFL-800 Canīt reach websites with DNS
« Reply #5 on: August 26, 2014, 10:30:44 AM »

Thanks buddy, this worked! :) Really appreciate it
Logged

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 49923
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: DFL-800 Canīt reach websites with DNS (RESOLVED)
« Reply #6 on: August 26, 2014, 10:31:27 AM »

Glad the information helped.

Enjoy.  ;)
Logged
Cable: 1Gb/50Mb>NetGear CM1200>DIR-882>HP 24pt Gb Switch. COVR-1202/2202/3902,DIR-2660/80,3xDGL-4500s,DIR-LX1870,857,835,827,815,890L,880L,868L,836L,810L,685,657,3x655s,645,628,601,DNR-202L,DNS-345,DCS-933L,936L,960L and 8000LH.