Two web servers cant use same port forwarding rule???

Similar Messages

• Two Web-tiers Sharing the same business layer - oc4j

  I am trying to produce a web application that effectively has two parts. The initial part is an administration system that is used for data entry, it is used within the intranet and must be hidden behind the firewall. The second part is a data search system that is accessible via the internet (i.e opened up through the firewall). Both these web apps should share the same data (one for add/edit of data and one for searching of data) My question is, how can two web applications share the same jar file (business layer - session and entity beans). Is it possible to setup the oc4j appserver to get the applications to us the same jar file?
  Also any ideas how I can hide one of the web applications from the public access, if I open up the port number on the firewall that the oc4j http server uses surely all of my web-apps will be visible via the internet.
  Not sure if this is the right forum for this kind of question as it is more of a design issue but any help would be most appreciated.

  Eddie/403640, you have probably solved your problem of sharing the same jar files. How did your solve it? As I see it, there is no problem at all.
  One way, the ordinary way, is to create an application with ejb modules and web modules. Your business layer are the ejb modules. Your web applications are the web modules. By default, all classes in a jar that is specified to be an ejb module in the application.xml of your application are visible to all your ejb modules and web modules; so are the libraries referenced by the Class-Path attribute in the META-INF/MANIFEST.MF of that ejb jar. If you have connector modules, all jars in the root directory of your .rar file will be available to all modules.
  In a word, the business layer is automatically shared by the web tiers in a j2ee application.

• How to send to multiple people using same port?

  I am trying to have one person send TWO audio sources to 10 others using same port- lets say 12345. I get "Can't open local data port:" error. The first audio is fine since I just use .addTarget(). Is there a way i can do the same for the 2nd audio source still using the same port? thanks!

  As far as I know, you should transmit using even-numbered ports, eg. 22222 and 22224.
  I think a port numbered 22223 and 22225 are opened respectively to handle control information.
  Could be wrong, but try it anyway!
  StHogan

• Two R3 servers have the same logical system name?

  Can two R3 servers have the same logical system name present in the same network? We plan to clone our production server and let the clone reside in the same network. The clone is identical with the production server with the same SID, hostname, logical system name, but different IP address.

  Hi
  Check this  [Link|http://help.sap.com/saphelp_nw70/helpdata/EN/da/5990df015b5b43a36f6ce7fa1ee8c0/content.htm]will cleare you doubt
  Regards
  Uday

• Multi node two web servers?

  Is it possible to have TWO web servers, on a multi node install. I am not really concerned about load balancing. I am mostly concerned with installing a second web server in a DMZ for external users to access.

  There is a document in Metalink for this. We have implemented DMZ setup in multinode. Note:287176.1
  -Thiru Pandian

• Publish the port forwarding rules and req. for customers to use the FiOS TV features they pay for!

  Please read this thread and vote.
  http://forums.verizon.com/t5/Share-Your-Ideas-with​-Verizon/Publish-the-port-forwarding-rules-and-req​...

  Here they are, but - yes it would be great if Verizon published these, or at the very least linked to Actiontec's Website, where they publish the rules as well.   or at least sticky some of these instructions here in the forums.   
  Instructional Video's and step by step detailed instructions for port forwarding
  How to enable BASIC Port Forwarding on the MI424WR Verizon FiOS Router (actiontec.com)
  How to Configure Advanced Port Forwarding on the MI424WR Verizon FiOS Router  (actiontec.com)
  PCWintech's guide to portforwarding for the actiontec MI424WR (Verizon Firmware)
  PCWintech's guide to portforwarding for the Westell 327w DSL Modem
  PortForward.com
  I put my vote in. 
  EDIT:  I Didn't realize you were asking for the port forwarding rules to the features, I should have read better.     But yes I agree with that too.   

• Lync Edge and Proxy server public DNS records port forwarding rules

  Hi All
  I have question in regards to port forwarding rules for port 443 of simple url.
  I have 4 public ip addresses.
  1 edge server (4 nics , 3 running with different ip for sip, meet and dialin in DMZ network, 1 connected to internal local network).
  1 proxy server (2 nics, 1 running with an ip which is in DMZ same as edge, and 1 connected to internal local network)
  1 front end (lync 2013 standard installed.) connected to internal local network
  1 office web apps . connected to internal local network
  The question is that I am using 3 public ip addresses respectively on public DNS records for sip, meet and dialin(av) and using port 443 which has been set on edge server. So , I can use 3 DMZ network ip address on edge for sip, meet
  and dialin (av) port forwarding from 3 public ip addresses as per in Microsoft document.
  However, I also have a reverse proxy .Hence, my understanding is all public DNS records except SIP and port 443 should be pointed and port forwarded to reverse proxy ip address which is in DMZ network as it would redirect 443 and 80 to 4443 and 8080 to front
  end.
  Now the question has been clear, if simple URLs public DNS record and port forwarding rules for port 443 should be pointed to reverse proxy server, why they need to be set on each ip address and port number in Front end server topology to edge server?
  If anyone knows, please give a help how to set it correct and what is supposed to be a correct configuration for a topology lync 2013

  Hi George
  Thanks for your reply. Attached is my topology which could make my it bit clear. You may see the public dns host record from the image. I set sip, meet, dialin , and owa 4 host records. The first 3 records are pointed to lync edge by doing a NAT with port
  443 which is the same as per you said. However my understanding is they should be pointed to reverse proxy instead as for instance, I need meet.xxx.com with port 443 to be redirected to port 4443 through reverse proxy server to the front end. So when the external
  customers who do not have lync client installed to their machine then we can shoot a lync meeting and send to them via outlook and they just need to click on join lync meeting link in the email to join in such a meeting based on IE. (Is my understanding correct?)
  If lync web meeting works like so , then the question is why I need to set three SAME addresses in front end topology builder for edge and make them point to edge server instead?　
  １. Access Edge service (SIP.XXX.COM) ---> I understand that it is used for external login lync front end.
  2. Webconf edge server(Can I set to meet.xxx.com which is the same as simple URL that points to reverse proxy?) ----> If I can set this address to be the same as simple url address that points to reverse proxy, why should it need to be NATed to edge
  instead? TO BE HONEST, if I HAVE tested, if I set this url as sip.xxx.com which means to use a single FQDN and ip address with port 444 and points simple url meet.xxx.com to reverse proxy, it will still work to join lync meeting sent by
  outlook.I DO NOT REALLY UNDERSTAND WHAT this URL used for at this stage.
  3. AV edge --- same as webconf
  Regards
  Wen Fei Cao

• Port Forwarding Rule Added Via UPnP

  14:24:13, 27 May.
  (2110048.260000) Port forwarding rule added via UPnP. protocol: UDP, external ports: any->57902, internal ports: 57902, internal client: 192.168.1.65
  14:23:34, 27 May.
  (2110008.940000) Port forwarding rule added via UPnP. protocol: UDP, external ports: any->57902, internal ports: 57902, internal client: 192.168.1.65
  14:22:53, 27 May.
  (2109967.800000) Port forwarding rule added via UPnP. protocol: UDP, external ports: any->57902, internal ports: 57902, internal client: 192.168.1.65
  14:22:10, 27 May.
  (2109925.160000) Port forwarding rule added via UPnP. protocol: UDP, external ports: any->57902, internal ports: 57902, internal client: 192.168.1.65
  14:21:37, 27 May.
  (2109892.130000) Port forwarding rule added via UPnP. protocol: UDP, external ports: any->57902, internal ports: 57902, internal client: 192.168.1.65
  14:21:06, 27 May.
  (2109861.170000) Port forwarding rule added via UPnP. protocol: UDP, external ports: any->57902, internal ports: 57902, internal client: 192.168.1.65
  14:20:26, 27 May.
  (2109820.740000) Port forwarding rule added via UPnP. protocol: UDP, external ports: any->57902, internal ports: 57902, internal client: 192.168.1.65
   Hi guys, would anyone be able to tell me what the above messages in my HH3's log mean?  My connection has been fine but I would like to know why this is happening every few seconds. 
  At first I thought it was because of a certain program I was using but it happens even when this program isn't running so I just don't know!!  Any help is appreciated.
  EDIT:  So I'm guessing it's something to do with having UPnP turned on.  The reason I'm asking is because I've seen other people's logs and they aren't filled with this message.

  Thanks, TommyBobbins.
  I will turn off UPnP and see what happens.
  I checked the logs again my computer has a lease of 192.168.1.64 - this IP address is also showing the same error in the logs. I suspect the other IP address, ending in 65 is my Dad's computer. He uses Windows and I use Mac.
  I'll keep you posted.
  EDIT:  Just turned off UPnP and that was OK.  I checked a program called uTorrent and it says the incoming TCP port (54488) is working.....I find this strange as I have portforwarding turned off... :s
  Any ideas?
  EDIT AGAIN:
  Just wanted to add this in:
  18:54:38, 27 May.
  (2126273.250000) Port forwarding rule added via UPnP. protocol: UDP, external ports: any->52503, internal ports: 52503, internal client: 192.168.1.65
  18:53:53, 27 May.
  (2126228.130000) Port forwarding rule added via UPnP. protocol: UDP, external ports: any->52503, internal ports: 52503, internal client: 192.168.1.65
  18:53:20, 27 May.
  (2126194.690000) Port forwarding rule added via UPnP. protocol: UDP, external ports: any->52503, internal ports: 52503, internal client: 192.168.1.65
  20:34:34, 27 May.
  (2132268.320000) Port forwarding rule added via UPnP. protocol: UDP, external ports: any->54488, internal ports: 54488, internal client: 192.168.1.64
  20:34:31, 27 May.
  (2132266.240000) Port forwarding rule deleted via UPnP. protocol: UDP, external ports: any->54488, internal ports: 54488, internal client: 192.168.1.64
  20:34:29, 27 May.
  (2132264.190000) Port forwarding rule added via UPnP. protocol: TCP, external ports: any->54488, internal ports: 54488, internal client: 192.168.1.64
  20:34:27, 27 May.
  (2132262.050000) Port forwarding rule deleted via UPnP. protocol: TCP, external ports: any->54488, internal ports: 54488, internal client: 192.168.1.64
  As you can see it happens on different ports and UDP and TCP ports....
  Hasn't happened in the 20mins or so I've had UPnP turned off.  Still, I am curious as to what causes this.

• RV180W loses port forwarding rules when switching WAN connections

  We have a backup WAN connection in our office, but we switch this connection manually on our RV180W when the primary goes down. Our normal connection is ADSL with PPPoE, and the backup is Cable with DHCP.
  However, we also have some port forwarding rules for our VoIP PBX (UDP port 5060) as well as SSH, and these rules seem to stop working completely when we switch our WAN connection to our cable connection. We can still surf the web from our workstations, but our incoming phone calls and SSH connections all cease to work completely. The problem does not persist after we've switched back to our normal ADSL connection.
  This behaviour is completely bizarre and suggests that there's some kind of bug in the Cisco RV180W.

  helm,
  I'm sorry, I wasn't clear which IP address renewal I am speaking about.
  I believe that the problem is caused when the router renews the WHS's local IP address (192.168...). My WAN IP address remains unchanged througout the tests I performed and the problems I experienced.
  The very act of changing the local clients' lease time in the router's configuration causes the forwarding to be lost immediately. (I am gusessing that when the lease time is changed, the router immediately renews the lease and begins a new countdown.)
  (In fact, I might go as far as to say it is a bug in the firmware, but I haven't done enough testing to nail it down.)

• Port Forwarding Rules

  I had to do a factory reset on my MI424WR router while trying to get a security DVR accessable from the outside. I noticed that I have far fewer port forwarding rules now than before the reset.  Does anyone have a list of rules I "should" have. Or maybe a config file I can load? 
  The issues now are that I lose connectivity with the net after the router runs for a couple hours.  I also lose the ability to log into the router.  Resetting the router clears it for a while, but then it dies again. 

  The rules that should be in the router should be applied by Verizon or added by the router automatically as time goes on. For your case, just re-create your rules and see if anything breaks.
  For the router deal, consider disabling services like UPnP, the IGMP gateway, and the Firewall so the router runs in simplest form. Alternatively,  see if you can narrow down the disconnects down to a specific device or with bad Coax if you have a coax connection back to the ONT. Failing that, consider asking for a new router from Verizon. 
  ========
  The first to bring me 1Gbps Fiber for $30/m wins!

• Maximum port forwarding rules in RVS4000 ?

  Hello,
  I'm wondering if there is a maximum number of port forwarding rule in the RVS4000.
  I can't find this information in the specs.
  Thanks in advance.

  great. so the better question is WHY is there a maxium? i need to set up many rules in my SMALL BUSINESS environment. this stupid sh!t is costing me A LOT OF MONEY

• Static NAT to two servers using same port

  I have a small office network with a single public IP address. Currently we have a static nat for port 443 for the VPN. We just received new software that requires the server the software is on to be listening on port 443 across the internet. Thus, essentially I need to do natting (port forwarding) using port 443 to two different servers.
  I believe that the usual way to accomplish this would be to have the second natting use a different public facing port, natted to 443 on the inside of the network (like using port 80 and 8080 for http). But, if the software company says that it must use port 443, is there any other way to go about this? If, for example, I know the IP address that the remote server will be connecting to our local server on, is there any way to add the source IP address into the rule? Could it work like, any port 443 traffic also from x.x.x.x, forward to local machine 192.168.0.2. Forward all other port 443 traffic not from x.x.x.x to 192.168.0.3.
  Any help would be very much appreciated.
  Thanks,
  - Mike                  

  Hi,
  Using the same public/mapped port on software levels 8.2 and below would be impossible. Only one rule could apply. I think the Cisco FWSM accepts the second command while the ASA to my understanding simply rejects the second "static" statement with ERROR messages.
  On the software levels 8.3 and above you have a chance to build a rule for the same public/mapped port WHEN you know where the connections to the other overlapping public/mapped port is coming from. This usually is not the case for public services but in your situation I gather you know the source address where connections to this server are going to come from?
  I have not used this in production and would not wish to do so. I have only done a simple test in the past for a CSC user. I tested mapping port TCP/5900 for VNC twice while defining the source addresses the connections would be coming from in the "nat" configuration (8.4 software) and it seemed to work. I am not all that certain is this a stable solution. I would imagine it could not be recomended for a production environment setup.
  But nevertheless its a possibility.
  So you would need the newer software on your firewall but I am not sure what devce you are using and what software its using.
  - Jouni

• How to set up NAT for two servers using same port with ASDM ASA 5505

  Hi there,
  We have a new installation of a ASA 5505 and are trying to get some NAT issues straightened out. Here is the scenario: On our internal network, we have two servers running Filemaker Server, a relational database server that clients connect with using port 5003. Our goal is to be able to allow users from the outside to access either of these servers as needed. I know how to set up a simple static NAT rule and matching Access rule in ASDM which would be fine for a case in which only one server using a given port is running on a network, but for simple static rules I seem to be blocked from entering a different translated port number from the orginal port number, which becomes a problem when two servers we need to access from the outside are running software using the same port number.
  What is the simplest way to address this need? I am guessing that I need to set up a scenario like this, where port 5004 (or any arbitrarily choosen unused port, can be used to access the second server:
  Outside user enters   FQDN:5004  and this translates to Database server # 1 as   192.168.1.40:5003
  and
  Outside user enters   FQDN:5003  and this translates to Database server # 1 as   192.168.1.38:5003
  If so, what is the easist way to get this done? Or is there a better what to handle this scenario?
  Thanks in advance,
  James

  I would create two objects and use object NAT
  object network Obj_5004
  host 192.168.1.40
  object network Obj_5004
  nat (inside,outside) static service tcp 5003 5004
  object network Obj_5003
  host 192.168.1.38
  object network Obj_5003
  nat (inside,outside) static service tcp 5003 5003
  Of course you will need to open your outside interface for tcp ports 5003 and 5004 to make this happen

• Strange behaviour: two servers on the same port

  Hi!
  I hope this is the right section for this post. I need help about a strange behaviour involving a ServerSocket.
  For my thesis I need to write a program that receives data from a pre-existing DSMS client, filters them and then sends them to a pre-existing DSMS server. And here is my problem: if I try to create a ServerSocket on the same port of the DSMS server, my program throws no exception, and the servers seem running on the same port. This is a behaviour that I'd like to avoid, but I cannot understand what the problem is. Can you help me?
  The source code of the DSMS server can be found here (it's written in C++): http://infolab.stanford.edu/stream/code/stream-0.6.0.tar.gz
  The source code of my server class, instead, is this one:
  import java.io.*;
  import java.net.*;
  public class ThreadGenerator {
       private ServerSocket server;
       public void connect(String servPort, String cHost, String cPort) {
            try {
                 server = new ServerSocket(servPort);
                 System.out.println("SERVER running on port "+servPort);
            } catch (BindException e) {
                 System.out.println("Address already in use!");
            } catch (Exception e) {
                 System.err.println(e);
            try {
                 while(true){
                      Socket client = server.accept();
                      StreamThread T = new StreamThread(client, cHost, cPort);
                      T.start();
            } catch (EOFException e) {
                 System.out.println("Server closed connection!");
            } catch (Exception e) {
                 System.err.println(e);
  }I'm programming on Mac OSX Tiger, with Java 1.5.0.
  Thanks in advance for your help.

  The problem is still happening to me, I tried in this very moment. The code I'm using is the one I posted, and the second server is the one that I linked. I don't think there's anything else to add.
  If you're sure that the problem is not in my code, then it means that it is in the linked server, which partially solves the problem. But I'd like to know, if it's possibile, if there is any other way to check if the port is already in use.

• Two Web Servers

  Hey everyone.  I'm stumped! 
  Here's my set up.
  I have two 10.6 Servers.  One's the OD Master, running DNS, DHCP, SMB and a few other services.  The other's a replica running client fun time services.  It's also hosing all the users "Public" info via AFP and SMB.  Most importantly it's running the school's web server.  The router forwards all requests on port 80 to that server.
  I've set up setting up a 10.7 Server that's going to host all of the school's iPad configurations.
  It's set up, users can authenticate and download profiles etc INSIDE the school. But not outside.
  I've set up the name server info already so outside the school, 10.7server.server.com points at my IP address, but when you do that, it just dials up the 10.6 web server.
  My question is this.  How do I set up the router so that requests go to 10.7server.server.com when that's the address entered by users?
  OR, is there a way make the DNS server or the Web server recognize when someone types 10.7server.server.com from outside the school?
  -Graham

  IP routers know from and deal with IP addresses, and not with DNS names.
  If you want to implement a scheme where you have two external references into your network, then you would want and use two public IP addresses and the associated forwarding, or a much smart(er) router (and those aren't cheap), or you could configure your web server as a reverse proxy (which is more complex).
  With a gateway-firewall-router with decent server-grade capabilities, I'd likely move the public-facing web server stuff to a box in a DMZ (as that "bastion" server is the most likely to be breached, particularly if it's running a web content management system or other services) and configure the gateway-firewall-router as a VPN server end-point.  I'd expect the "bastion host" box would get breached, but the DMZ would keep it contained.  The VPN is the path into your internal network, and avoids exposing more protocols and services than necessary; more paths for attacks.
  If you want to configure DNS within your network to reference a different IP address than your public DNS, here's some reading.  (I don't know how much you know about this networking area, so some of this may well be little more than a review for you.)  With internal DNS from your server, you can serve the internal IP address to your users and to users on the VPN, while your external DNS can translate to a different address.  That article links to another on configuring external services, as well as to a write-up on IP networks, firewalls and related details.  (It's also possible to have a mid-grade router correctly process the external IP address and "reflect" it back into your network.)
  And if you want to obfuscate your domain, use "example.com", "example.org" or "example.net".  These domains are reserved for this use.  The domain name you've specified is a real and registered domain.