I set up Routing and Remote Access on a computer with 2 NICs so that I create a firewall between my network and the Internet. Now, I am having a BIG PROBLEM. I can't forward ports. When I forward my HTTP port to the appropriate server, I can't access them by typing the Internet IP address in, which means i cannot access my web server on the NAT forwarding to the appropriate internal server. However, if i connect another network (not the internet) to the internet port of my Routing and Remote Access computer, I can access the other networks HTTP by typing in the IP address of that computer. What am I doing wrong? Please help, I need my web server up and running on the internet immedietly. Hi I'm Maddie I'm a beautiful black flower, Hi I'm Maddie I'm a beautiful black flower, Hi I'm Maddie. Hi I'm Maddie. Hi I'm Maddie I'm a beautiful black flower,

And, how is the routing setup? The default gateay on the firewall points to the gateway on your ISP, right? (Sounds as if firewall is only routing locally-connected interfaces) And are you sure hte port-forwarding is not working? Use Wireshark: http://www.wireshark.org/ Are the packets leaving the firewall w/ the correct destiation IP's on the right interface?

fmwap, thank you for responding. The Port Forwading 'Works', just not in the internal network. Lets say there is a firewall, protecting Network1 from Internet. Firewall basically forwards the ports, so lets say we type in 52.142.132.42 (made up ip address) on any computer outside the network connected to the internet. You will be able to access the network using the ports you forwarded. Now, lets say you use a computer in Network1's Network. When you try to for instance, remote desktop to 52.142.132.42, you can't access it. My question is, how do I set it that both internal and external can access the Internet IP Address? This works well with my router, but not with the Routing and Remote Access set up, which I need for VPN. http://crystalpc.us/images/vpn.jpg Here is a picture of how I set up my network. Hi I'm Maddie I'm a beautiful black flower, Hi I'm Maddie I'm a beautiful black flower, Hi I'm Maddie. Hi I'm Maddie. Hi I'm Maddie I'm a beautiful black flower,

Yea, I"ve had that same problem on BSD-routers I've built, it's normally due to a poor NAT implementation- where the packets for the webserver are not NAT'd properly becuase they're always marked as local & it ends up out of state when it's forwarded to WWW - I could never fix it. In my setup, I made a record for the local IP of the web server in DNS - so locally it resolves locally & never hits the FW, external queries are still given the external address. No idea how to fix it on a windows box.

I am just sticking with my router (even though vpn doesn't work now), but in another forum I asked the same question, they said its called split horizon and you cannot fix it. Setting up DNS locally to point to my web site will work, however it will be only pointing to my web server and I use my router to point to different different computers so that i can externally point by typing my web site using different progrmas, like VoIP and Web Site. Anyways, I am just using my router for now. If I get a VPN Firewall, will this have this horizon split bug? Hi I'm Maddie I'm a beautiful black flower, Hi I'm Maddie I'm a beautiful black flower, Hi I'm Maddie. Hi I'm Maddie. Hi I'm Maddie I'm a beautiful black flower,