Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 37 replies
  • Answers 2 answers
  • Subscribers 28 subscribers
  • Views 3397 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

dynamic dns issue

ChriZathens

Hello guys!

Long time UTM user, absolute newbie when it comes to XG..Anyway..

I need one specific thing. I have 3 dynamic dns hostanames. And one internal webserver. e.g. 10.10.10.1

I need to use WAF and redirect first.dyndns.com to 10.10.10.1 (port 80)

then second.dyndns.com to 10.10.10.1:8090

and finally third.dyndns.com to 10.10.10.1: 9090

Can someone share an example of how to use this dyndns hostname to redirect to an internal ip on port 8096?

I tried many combinations and they all redirect to 10.10.10.1 (port 80)

The webui, being noticably slower than the one of the UTM's, makes things even harder. Disappointed



This thread was automatically locked due to age.
  • 0 in reply to LuCar Toni

    What do you mean?

     
    Sophos XG Home Licence.

    Machine: Barracuda F12 appliance (Intel Celeron N3350 CPU, 6GB Ram, 80GB sata SSD)
  • 0 in reply to ChriZathens

    You wrote, you are a UTM user. How did you do this on UTM, so we can map the same construct on SFOS. 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni

    Oh, OK, I see..

    Unfortunately the UTM has now been replaced by the XG.

    But the way it was working was the way I described above.

    In webserver protection section you were creating the virtual server. It had the dyndns hostname, the listening interface and the port 80. Then you had the "real" webserver. You were defining the internal IP, and the port (8086) and you were matching it with the previously created virtual one. I will try to login to the UTM and make screenshots

     
    Sophos XG Home Licence.

    Machine: Barracuda F12 appliance (Intel Celeron N3350 CPU, 6GB Ram, 80GB sata SSD)
  • 0 in reply to ChriZathens

    OK, so here we go.

    The first thing you were doing is setting the real webserver. For motioneye, see below the settings:

    Then you were creating the virtual webserver and you were selecting the real one created before. The logic is basically the same in XG

    And that was it.

     
    Sophos XG Home Licence.

    Machine: Barracuda F12 appliance (Intel Celeron N3350 CPU, 6GB Ram, 80GB sata SSD)
  • 0 in reply to ChriZathens

    And for the second Webserver? 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni

    Sorry, thought that one example will be enough.. Disappointed

    Please see below the other two:

    Here is Pyload (will be replaced with emby in XG)

    The Real Webserver part

    And this is the Virtual webserver part

    And finally the "root" one which is on port 80

    Real:

    Virtual

    The way it was working was this:

    When I hit from the browser http://srv.ddns.net I was getting to port 80 of the InsomniaWebSRV 

    When I hit from the browser https://srv.ddns.net:4444 I was getting to sophos UTM webadmin page

    When I hit from the browser https://srv.ddns.net I was getting to sophos UTM portal

    When I hit from the browser http://motion.ddns.net I was getting to the motioneye login page which was hosted on port 8096 of InsomniaWebSRV 

    When I hit from the browser http://pyload.ddns.net I was getting to the pyload login page which was hosted on port 8000 of InsomniaWebSRV 

     
    Sophos XG Home Licence.

    Machine: Barracuda F12 appliance (Intel Celeron N3350 CPU, 6GB Ram, 80GB sata SSD)
  • 0 in reply to ChriZathens

    As I mentioned already, all dyndns names should lead to the same server, just different ports.

    Just to test, I tried something else. I created a different web server which leads to an openspeedtest docker on my synology nas

    So the webserver is a completely different ip address.

    Entering the DDNS hostname again redirected me to the first webserver again on port 80, which is rather strange

    So a question, just so that it is written here... In network -->DDNS I have entered all 3 of those dyndns names..

    Do they need to be removed from there? And only add them in the WAF settings?

    (which does not make much sense, of course, since the needed authentication for dyndns only exists in Network-->Dynamic DNS tab)

     
    Sophos XG Home Licence.

    Machine: Barracuda F12 appliance (Intel Celeron N3350 CPU, 6GB Ram, 80GB sata SSD)
  • 0 in reply to ChriZathens

    Ok, update post just to say that I did remove them and it was still redirecting to port 80 of the server, but since dns is involved here, my guess is that when they are removed and noip gets no updates they will simply redirect to nowhere...

    Anyway, is there anyone with a scenario like this who can confirm that it is working? 

    Does anyone need any additional info about my setup in order to help find out what the issue is?

    thanks! 

     
    Sophos XG Home Licence.

    Machine: Barracuda F12 appliance (Intel Celeron N3350 CPU, 6GB Ram, 80GB sata SSD)
  • 0 in reply to ChriZathens

    Can someone please offer some insight?

    Should I try a factory reset or something? Setting all the stuff I have once more it will be quite a task, but I really don't know what else to try. This specific task should be the simplest one. But it is not working for me..

     
    Sophos XG Home Licence.

    Machine: Barracuda F12 appliance (Intel Celeron N3350 CPU, 6GB Ram, 80GB sata SSD)
  • 0 in reply to ChriZathens

    I am currently thinking, this is not possible in SFOS. Based on the integration of the services, the web app will be hosted on IP base, not SNI. 

    __________________________________________________________________________________________________________________

Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?