Hello,
Our network ‘was’ setup so that a web server was connected outside of our firebox, as we didn’t have NAT admin abilities in the firebox to open up the port. The web server was running on an external IP assigned to us by our ISP. Everything was working great, as well as running FTP from IIS as well.
Now, because the server really needed to be put behind some protection, I have a server 2008 box set up with RRAS, and the web server is now behind that Windows router. The web server now has its own internal IP (172.16.x.x class), the Windows router has the external static IP as its external IP and the internal NIC has 172.16.0.1 as the gateway. I’ve added the Web Site (port 80) service to the external interface, giving it the destination IP of the web server, through the RRAS snapin. Our web site works flawlessly for the http service. The problem I have is that we also need our FTP site running. Through the RRAS snapin, I also added the FTP service, routing to the same IP number as the web server, as the same server is running both. When we try to get to the FTP site, it does prompt for a login as it should, but as soon as it authenticates, we get a “page cannot be displayed”.
They’ve had internal networking on a 100.x.x.x class which I’m working on getting rid of because it shouldn’t be used. The interesting thing is that if I change the web server’s IP, and the associated numbers in the NAT, it seems to work, but only if we use the ip number as the ftp address. It won’t work with the name. With the 172.16.x.x class though, we get the page cannot be displayed either way.
Any ideas on how I can get this resolved would be greatly appreciated. Sorry I’ve written so much, but I wanted to provide details.