4. LAN Web Server Partially Accessible

LAN Web Server Partially Accessible

  • S

    Hi everyone,

    I've fairly new to pfSense, but using the forums and documentation sections I've managed to get it working, so thank you to all who've contributed to them. However, there seems to be one problem that I can't find out how to fix.

    I have a web server located in the LAN network, and the NAT and firewall rules have been set up to forward port 80 to this device. It is accessible on the Internet for some people, but for others it's impossible to view. Looking in the web server's logs, it shows that the initial GET request is initiated, but then it doesn't get any further than that. Connecting to another internal server using HTTPS works correctly.

    The pfSense box has replaced a VigorTek router, which did not have this problem.

    Firewall Rule
    –----------

    | Proto | Source | Port | Destination | Port | Gateway | Queue |
    | TCP | * | * | 172.16.1.11 | 80 (HTTP) | * | none |

    NAT
    –--

    | If | Proto | Src. addr | Src. ports | Dest. addr | Dest. ports | NAT IP | NAT Ports |
    | WAN | TCP | * | * | WAN Address | 80 (HTTP) | 172.16.1.11 | 80 (HTTP) |

    HTTP Website
    –------------
    The links below point to the Moodle site that is located on the internal web server. When viewing the page in Google Chrome, it responds with an error of: Error 101 (net::ERR_CONNECTION_RESET): The connection was reset.
    Address: http://moodle.sgse.co.uk/login/index.php
    HEAD only: http://web-sniffer.net/?url=http%3A%2F%2Fmoodle.sgse.co.uk%2Flogin%2Findex.php&gzip=yes&type=HEAD&http=1.1
    GET: http://web-sniffer.net/?url=http%3A%2F%2Fmoodle.sgse.co.uk%2Flogin%2Findex.php&gzip=yes&type=GET&http=1.1
    Proof working: http://developers.google.com/speed/pagespeed/insights/?url=moodle.sgse.co.uk

    HTTPS Website
    –-------------
    This is the HTTPS server also located internally, which loads without any problems. The HTTP redirect page is on the same server the site above runs off.
    Address: https://email.sgse.co.uk/owa
    Address (HTTP redirect page): http://email.sgse.co.uk (This page works, showing "Redirecting to email login…")
    N.B. I am currently aware that there is a problem with the security certificate.

    Packages Installed
    –----------------
    bandwidthd
    Dashboard Widget: Antivirus Status
    Dashboard Widget: HAVP
    File Manager
    HAVP antivirus
    mailscanner
    Postfix Forwarder
    squid
    squidGuard

    Sorry if this is in TL;DR territory. I've tried to add in as much information as possible, but let me know if there is anything else. Thanking you in advance.

    0
Log in to reply
 

Products

Services

Support

News

Resources

Company

Our Mission

We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

Subscribe to our Newsletter

Product information, software announcements, and special offers. See our newsletter archive for past announcements.

© Copyright 2002 - 2019 Rubicon Communications, LLC | Privacy Policy