Welcome Serena Central users! CLICK HERE
The migration of the Serena Central community is currently underway. Be sure to read THIS MESSAGE to get your new login set up to access your account.
Anonymous_User Absent Member.
Absent Member.
1367 views

Accessing iFolder through firewall?

Happy new year to all!

Does anyone know if iFolder client needs any ports other than 80 and 443 to work from outside the firewall? I have a client who's NATed behind the firewall and even though I've forwarded the following ports, they still can't connect from outside? From with the LAN, no problem, what gives?

Ports forwarded: 80, 52080, 443, 52443, 636, 389

I've checked and the iFolder .conf file says it's using 80 and 443; does the client needs any other ports?

Thanks,

Soroush
Labels (1)
0 Likes
6 Replies
Anonymous_User Absent Member.
Absent Member.

Re: Accessing iFolder through firewall?

Soroush Madjzoob,
> Does anyone know if iFolder client needs any ports other than 80 and
> 443 to work from outside the firewall? I have a client who's NATed
> behind the firewall and even though I've forwarded the following
> ports, they still can't connect from outside?
>

No, it just needs 80, but NAT and port forwarding may cause problems.

- Anders Gustafsson, Engineer, CNE6, ASE
NSC Volunteer Sysop
Pedago, The Aaland Islands (N60 E20)

Novell does not monitor these forums officially.
Enhancement requests for all Novell products may be made at
http://support.novell.com/enhancement

Using VA 5.51 build 315 on Windows 2000 build 2195

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Accessing iFolder through firewall?

So if I'm NATed behind a firewall, then what do you suggest I do? What are the problems?

soroush

>>> Anders Gustafsson<dalton@nomail.to.me> Thursday, January 04, 2007 >>>

Soroush Madjzoob,
> Does anyone know if iFolder client needs any ports other than 80 and
> 443 to work from outside the firewall? I have a client who's NATed
> behind the firewall and even though I've forwarded the following
> ports, they still can't connect from outside?
>

No, it just needs 80, but NAT and port forwarding may cause problems.

- Anders Gustafsson, Engineer, CNE6, ASE
NSC Volunteer Sysop
Pedago, The Aaland Islands (N60 E20)

Novell does not monitor these forums officially.
Enhancement requests for all Novell products may be made at
http://support.novell.com/enhancement

Using VA 5.51 build 315 on Windows 2000 build 2195
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Accessing iFolder through firewall?

I should work with NAT and forwarding. We had a truly dreadful system some time ago. A dynamic single IP Address and 7 users with 2 servers. We setup a Fedora Core 4 Box with 2 NICS and used Firestarter for a Firewall and forwarding. We opened Port 85 (we put iFolder on 85, because we needed Port 80 on a different machine) and Port 443. Forwarded both Ports to the iFolder Server with Firestarter and used DynDNS on one of the workstations to give us external access. It worked perfectly for over 2 years.

You need to be sure that port 80 isn't being used for something else. I prefer with a system like that to put iFolder on a different Port to be sure and then you KNOW that this port is going to the correct box.

The only other problem we had was if LDAP had a problem we couldn't connect. Other than that, it should NOT be a problem. I think you'll find that using a port other than 80 will do the trick.
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Accessing iFolder through firewall?

Soroush Madjzoob,
> So if I'm NATed behind a firewall, then what do you suggest I do?
> What are the problems?
>

Make sure that you use DNS names instead of IP addresses in the ifolder
config. Problems might arise when the client asks "What is my iFolder
Server?" And is told 10.0.0.1:80

- Anders Gustafsson, Engineer, CNE6, ASE
NSC Volunteer Sysop
Pedago, The Aaland Islands (N60 E20)

Novell does not monitor these forums officially.
Enhancement requests for all Novell products may be made at
http://support.novell.com/enhancement

Using VA 5.51 build 315 on Windows 2000 build 2195

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Accessing iFolder through firewall?

Does your setup look like this:

Client private:80 | firewall xlated to public:80 | internet | ifolder:80

If yes, there should be no problem with it. If it is not working, perhaps
the ifolder server can't find it's way back to the client's public address,
i.e. it's default route is not correct?

If there is more to the 'path', please tell us all the details of it.
--
bd
NSC Volunteer SysOp

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: Accessing iFolder through firewall?

I will try and modify the IP to DNS but, each time I'm going into the settings and inputting the correct IP. I've verified that I can get to the server from outside by using http:// and going to the server's webpage, so port 80 is redirected to the correct IP and so are most other ports like 443, 52080, 389 and so forth.

Thanks,

Soroush


>>> Anders Gustafsson<dalton@nomail.to.me> Tuesday, January 09, 2007 >>>

Soroush Madjzoob,
> So if I'm NATed behind a firewall, then what do you suggest I do?
> What are the problems?
>

Make sure that you use DNS names instead of IP addresses in the ifolder
config. Problems might arise when the client asks "What is my iFolder
Server?" And is told 10.0.0.1:80

- Anders Gustafsson, Engineer, CNE6, ASE
NSC Volunteer Sysop
Pedago, The Aaland Islands (N60 E20)

Novell does not monitor these forums officially.
Enhancement requests for all Novell products may be made at
http://support.novell.com/enhancement

Using VA 5.51 build 315 on Windows 2000 build 2195
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.