Setup is 3 domains (General, Dedicated1, Dedicated2).
Server has 3 LAN IPs:
General = 10.1.1.1
Dedicated1 = 10.1.1.2
Dedicated2 = 10.1.1.3
CheckPoint Firewall-1 does static-nat (1 to 1) for each of these IP addresses:
General = 10.1.1.1 / 6.6.6.1 (EXT)
Dedicated1 = 10.1.1.2 / 6.6.6.2 (EXT)
Dedicated2 = 10.1.1.3 / 6.6.6.3 (EXT)
The issue is that I have the Listeners for each of these domain set to the internal IP (Ex. 10.1.1.1 port 21). No matter which of these I connect to, my firewall logs show that WingFTP is responding on the DEFAULT IP.
See, if someone connected to Dedicated1, I should see on the firewall internal 10.1.1.2 talking out, not 10.1.1.1. This causes an issue cause the client connecting is awaiting a response from 6.6.6.2 and is instead getting it from 6.6.6.1 and therefore not working...
If I change the default IP address of the server to any of the other domains, that FTP Domain is the one that starts working and the others stop working...
Multiple Domains with Unique IPs
-
- Site Admin
- Posts: 2086
- Joined: Tue Sep 29, 2009 6:09 am
Re: Multiple Domains with Unique IPs
Hi,
Maybe you are little misunderstanding of that. Listener supports uniqure IP. When you add a listener for the domain, you can choose an IP address(all the available IPs are shown on the drop-down list).
Maybe you are little misunderstanding of that. Listener supports uniqure IP. When you add a listener for the domain, you can choose an IP address(all the available IPs are shown on the drop-down list).
-
- Posts: 4
- Joined: Fri May 14, 2010 6:14 pm
Re: Multiple Domains with Unique IPs
I understand it from what would be logical. Each of the Domains has their listeners set to a specific IP address.
Here is the default FTP:
Here is the Dedicated1 FTP:
So, with that, why wouldn't Dedicated1 FTP respond from IP 10.12.1.211? It should. That would makes sense for a firewall to send packets back to the client properly.
Here is the default FTP:
Here is the Dedicated1 FTP:
So, with that, why wouldn't Dedicated1 FTP respond from IP 10.12.1.211? It should. That would makes sense for a firewall to send packets back to the client properly.
-
- Site Admin
- Posts: 2086
- Joined: Tue Sep 29, 2009 6:09 am
Re: Multiple Domains with Unique IPs
So could you visit server 10.12.1.211 or 10.12.1.210 from local network correctly?
If you can visit them from local network, I think the issue may due to Router/Firewall's setting.
If you can visit them from local network, I think the issue may due to Router/Firewall's setting.
-
- Site Admin
- Posts: 2086
- Joined: Tue Sep 29, 2009 6:09 am
Re: Multiple Domains with Unique IPs
Hi,
When the client do a Passive command, the WingFTP will default send the local IP to the client. You can confige it at "Domains->Settings->General settings->FTP Pasv Mode". For domain "Dedicated", you can select the option "Fixed IP" and type "6.6.6.2" at the input box.
When the client do a Passive command, the WingFTP will default send the local IP to the client. You can confige it at "Domains->Settings->General settings->FTP Pasv Mode". For domain "Dedicated", you can select the option "Fixed IP" and type "6.6.6.2" at the input box.