Before I do a feature request I just wanted to make sure I have not missed any thing. How do people setup KeyHelp behind a NAT?
Notes
- I have gone through all of the configuration options, i hope I have not missed anything.
- KeyHelp uses the IP addresses it detects in the NIC configuration and shows this in: Settings --> Configuration --> IP Addresses
- There are no DNS Zone templates
- If I add my external IP into the NIC configuration I am sure this will cause routing issues. I use 'NAT Loopback' and 'Split DNS' on my pfSense router.
- I cannot do 1:1 NAT because I want to keep my NAT as is for network security. I pretty sure this is just DMZ or full exposure on the web. (simple answer )
- Anyone running a web server at home will need NAT support
- I currently run Control Web Panel (CWP) behind a NAT with working authoritative name servers. The webserver is fully functional.
- server IP with vps behind nat - viewtopic.php?t=11503&hilit=nat&start=15
This is not correct. It is very easy to setup your router to forward the correct ports for a Webserver (my name-servers work with no issue) and you do not need an external DNS server (except where you have registered your domain).Daniel wrote: ↑Mon 8. Aug 2022, 15:21 Hello,
most important (as far as I got from you) in the usage of Keyhelp regarding to DNS with an IP-address according to RFC-1918 ("private address") behind NAT is that you lose the public functionality of the Nameserver.
Of course there are options making this work, but its not worth the effort and depends on the infrastructure you use.
Keyhelp will work with close all functionality behind NAT. As long a public nameserver is used to all the domains, provided at the VPS with Keyhelp.
It can be your own public nameserver or of some provider. You just need to point all relevant domain records to the public IP where you proceed NAT to.
Basically Keyhelp and the configured services operation directly with an assigned public IP-address. Not behind NAT. But as explained and many of our users also operate Keyhelp behind NAT e.g. in testing/development enviroments.
In short: Use external DNS-nameservers for the domains @$Keyhelp-Host and Keyhelp will mostly work in NAT infrastructure. - How to configure a Shared IP on CWP - http://wiki.centos-webpanel.com/default ... ll-domains
- Manually edit each domains DNS Zone = not going to happen
- DNS Zone Templates. I could then manually change the IP address assigned in there
- (preferred) Add a custom IP option to: Settings --> Configuration --> IP Addresses - This could be then used to build all configs as normal and this IP would not be present on the NIC.