SG Broadband Community

I want to set up a web server in Windows XP using its IIS service. I'm behind a Netgear MR314 wireless router. Does anyone know of any tutorials out there that can walk me through this? I think I can get the web page set up and in the correct directory, but the differen IP addresses confuse the hell out of me. I know I have to forward the port, but to which IP? Any help would be appreciated. Thanks!

IIS? First promise tha tyou will keep it FOREVER UPDATED with the latest security patches. Daily. Serious! That piece of software is responsible for more holes that the swiss people who make that molded dairy product...


Enough ranting

People from the web need to find you. Because you are behind a NAT router, none of the machines on your LAN are connected to (or accessible from) the internet. You could have 254 machines behind that router and that single public ip address. If a request (for, say, a webpage) comes from outside onto your LAN, which machine does your router forward that request to?

That's what you are defining thru forwarding. So if your public (WAN) ip address is 111.111.111.111 and your webserver's internal address is 222.222.222.222, then you would set up the router to forward requests to 111.111.111.111 port 80 (http) to 222.222.222.222. That way people outside your router can access your webserver.

First thing is to do is verify that you are allowed to run a server by your ISP. It probably isn't worth the $15/month to have a site professionally hosted to get banned from broadband.

Second, check your router docs to see what the requirements are for port forwarding - some need static addresses (not dhcp) on your LAN side, others don't (becuase they reserve addresses for dhcp clients anyway). Set up your LAN based on this requirement.

Third - find out if your ISP has set you up with DHCP or a static address. If they give you DHCP, you will need a dynamicDNS server http://www.dyndns.org is one of several - that will keep track of your ip and map it back to your domain name.


Have fun,

Skye

Patching IIS is not enough. Make sure you follow the directions in my signature exactly as stated in the Tech bulletin from Microsoft. Fixint the permissions when setting up an IIS server is vital to secure operation.

Don't get me wrong, I love IIS and its operation, flexibility and SECURITY when set up correctly.

Yes, I said security. Properly configured permissions make IIS 5 pretty damn solid. You can follow the link in my sig, or search for Q271071 on Technet

Thanks for the help, guys. Hopefully, I can get everything set up tonight.

flexibility and SECURITY when set up correctly

An app is only as secure as the platform on which it runs...

Thats why you set the permissions on the OS. Take a look at the article cyberskye. My 20 win2k boxes have logged over 4 million crack attempts in 13 months since I upgraded from NT4, and 0 successful. Removing everyone from global access is one of the key factors.

I'm not saying it can't be cracked, even when set up properly, but Iv'e had folks from all over the world give it a shot 4 million times.

Guess I just don't trust what I can't see...or a company that released their flagship version with over 27000 known defects (several in the security area).

It can be secured. Just takes black magic - a whole lotta black magic. Not allowed on any classified systems in the gov't...might be for a reason.


Skye

Edit - I didn't mean to hijack this guys post - sorry for that.

We can flame in another dedicated post

I have 2k advance server running on a netgear rt314 which is the same router without the wireless. Go to netgears site and click support and on the right side of the screen it will tell you how to forward the ports and set up filtering. If you have any questions send me a pm and I will be glad to help you out.

Now on to security. first change the name and password of the router! Make sure your system is NTFS! Rename the administrator account and make the password strong IE: 68SJ01yx3! Never leave the system logged in as admin unless your working with it! For yourself give yourself a power user account and use it unless you need to access the system as the admin!