Novex Posted July 30, 2003 Share Posted July 30, 2003 heylo I run a small network here at home, one pc (192.168.0.1) is a windows 2000 box, currently sharing the Internet through ICS and using AnalogX Port Mapper to forward Port 80 to an internal web server running IIS5. now, in all my IIS logs, instead of getting peoples real IP addresses, all I get is 192.168.0.1, which is where the signals coming from, now Im asking, is there any program that will forward the IP address completely so that instead of getting the Windows 2000 machine I get the person accessing its "real" IP? no, Im not prepared to buy a router for this, cause when I did a forum search those were most of the replies, it would help if the program was free as well, though an "unlimited shareware" version would be ok (as in it doesnt expire in 15 days and still has the feature that I need). Thanks :) Link to comment Share on other sites More sharing options...
AndyD Posted July 30, 2003 Share Posted July 30, 2003 No, I don't think so. It is the 2000 pc that is, in essence, accessing the web server for the other pcs so you will see that IP. That is the whole idea behind proxies. Though you seem quite adamant about not buying a router, I still would urge to get one if you desire to see the ips within your network. You can get one pretty darn cheap if you don't care about wireless, which it seems to be the case. Link to comment Share on other sites More sharing options...
Fred Derf Veteran Posted July 30, 2003 Veteran Share Posted July 30, 2003 Um... AnalogX Port Mapper looks pretty cool. Hadn't seen that before. Thanks for the info. My question, however, is what is wrong with ICS' internal port mapping? You can easily use ICS to map port 80 from you computer with the internet connection (192.168.0.1) to the computer that has your webserver (192.168.0.2?). Link to comment Share on other sites More sharing options...
Novex Posted July 31, 2003 Author Share Posted July 31, 2003 (edited) The reason I dont particurly want to buy a router is because firstly I see no need to spend the money when I can find a cheap alternative, secondly I have parents to convince which is always a challenge in itself, and thirdly our ISP will only let a max of 7 separate IPs on the internet under our name (my understanding is that a router assigns each PC a different "internet" IP) and any more we have to start paying extra, Im getting around this at the moment by chanelling all the PCs through the one IP.. I looked at the ICS portmapping but I couldnt make any sense of it, Ill attempt that again.. On the ICS fact have you got any idea how to do it? so far Ive got under services Service Port Number: 80 TCP name or address of server computer on privaate network: 192.168.0.9 Ive tried "Charles", "192.168.0.9:80", "\\Charles", "Charles:80" and its all still not working when I try to access it through my external IP :pinch: Edited July 31, 2003 by Novex Link to comment Share on other sites More sharing options...
Jon Posted July 31, 2003 Share Posted July 31, 2003 ? That is the whole idea behind proxies. It isn't a proxy. A proxy handles application specific traffic, this is simply forwarding all traffic on a port. The traffic could be ftp, http, p2p, it doesnt care. And answering the original question, this is the nature of NAT, network address translation. The initial source IP address is lost. In the case of some ISPs, they traffic may well have been NAT'd before even hitting the Internet. You may be able to setup some form of vpn which causes the source IP to be encrypted in the packets data segment, but I've never really bothered to think about it too much. I'm sure MxxConn will have a better answer. Link to comment Share on other sites More sharing options...
whipper25 Posted July 31, 2003 Share Posted July 31, 2003 and thirdly our ISP will only let a max of 7 separate IPs on the internet under our name (my understanding is that a router assigns each PC a different "internet" IP) and any more we have to start paying extra, Im getting around this at the moment by chanelling all the PCs through the one IP.. if i'm not mistaken a router (NAT box) does this as well..'channel all connected pcs through one WAN IP...the router assigns each pc a different "LAN" IP..not "WAN" (internet) IP...so..a router will still keep all your pcs under one ip... i believe a router is a good investment.. but that's beside the point... Link to comment Share on other sites More sharing options...
CubanPete Posted July 31, 2003 Share Posted July 31, 2003 How about actually logging the ip's on the gateway machine, you should be able to set up a log that monitors access via a certain port. Just another question, is there any outside traffic actually accessing you web server or is it just you and you'r trying to access it via your external ip? I cant really understand how this is actually working, are you using NAT or ICS? Casue im sure ICS will forward the IP's where as NAT definetly wont. Another thing to try is the Firewall on the incomming connection, use that to forward the requests to the server. Link to comment Share on other sites More sharing options...
CubanPete Posted July 31, 2003 Share Posted July 31, 2003 and thirdly our ISP will only let a max of 7 separate IPs on the internet under our name (my understanding is that a router assigns each PC a different "internet" IP) and any more we have to start paying extra, Im getting around this at the moment by chanelling all the PCs through the one IP.. if i'm not mistaken a router (NAT box) does this as well..'channel all connected pcs through one WAN IP...the router assigns each pc a different "LAN" IP..not "WAN" (internet) IP...so..a router will still keep all your pcs under one ip... i believe a router is a good investment.. but that's beside the point... your thinking of a NAT enabled router, not all routers are NAT based or enabled, only router/firewalls Link to comment Share on other sites More sharing options...
Novex Posted July 31, 2003 Author Share Posted July 31, 2003 ok, no Im not using a router (which Im assuming is a NAT?) though I may look into one just for interests sake, since they assign IPs and all, and if it can keep the PCs under one IP then Ill definately have a poke around later on, but thats beside the point.. if I log the IPs on the gateway machine then I dont get who went to what, nor do I know of a logging program besides the firewall I use, which is BlackIce, and that I dont see having any Forwarding Abilities. The Inbuilt Firewall only comes iwth XP and this is 2000 so yeah.... and Im still trying to figure out how to use this ICS forwarding thing which isnt working at all! also yeah, outside traffic accesses my webserver, generally its friends but I also have misc. little things on there like sig images and the like... Link to comment Share on other sites More sharing options...
Fredde87 Posted July 31, 2003 Share Posted July 31, 2003 The reason I dont particurly want to buy a router is because firstly I see no need to spend the money when I can find a cheap alternative, secondly I have parents to convince which is always a challenge in itself, and thirdly our ISP will only let a max of 7 separate IPs on the internet under our name (my understanding is that a router assigns each PC a different "internet" IP) and any more we have to start paying extra, Im getting around this at the moment by chanelling all the PCs through the one IP.. No, no, no... you got it completely wrong... The router is used by people (most people like me) who only has 1 internet ip and has more then one pc... The router sets up a network and assigns the computers with an internal ip (192.168.0.x).. If you get a router it will only use one of your 7 ips... Why dont you just put the webserver (iis server) on a seperate ip? Then you shouldn't need to forward it. Also some isp block webservers by blocking all ingoing data on port 80... To forward a port under ics do the follow: (I dont know if it is precisly that because it was 2 years ago I used ics...) 1. Right click on My Network Places and select propertys. 2. Right click on your external ip adapter (to use ics you should have 2 one for the internal network and one for the internet) and select propertys. 3. Click the tab in the top (cant remember what it is called :s) I think it is called Sharing. 4. The Enable Internet Connection Sharing box should allready be crossed. Select the settings (or maybe advanced button). 5. I think there should be a add button if Im not mistaken click it. 6. Select tcp and enter the settings, port and then you should just enter the netbios name of the computer (Charles)... That should be it really... Link to comment Share on other sites More sharing options...
Jon Posted July 31, 2003 Share Posted July 31, 2003 Casue im sure ICS will forward the IP's where as NAT definetly wont. ICS is basically NAT with some pretty wizards. Link to comment Share on other sites More sharing options...
CubanPete Posted July 31, 2003 Share Posted July 31, 2003 ok, no Im not using a router (which Im assuming is a NAT?) though I may look into one just for interests sake, since they assign IPs and all, and if it can keep the PCs under one IP then Ill definately have a poke around later on, but thats beside the point..if I log the IPs on the gateway machine then I dont get who went to what, nor do I know of a logging program besides the firewall I use, which is BlackIce, and that I dont see having any Forwarding Abilities. The Inbuilt Firewall only comes iwth XP and this is 2000 so yeah.... and Im still trying to figure out how to use this ICS forwarding thing which isnt working at all! also yeah, outside traffic accesses my webserver, generally its friends but I also have misc. little things on there like sig images and the like... sorry yes i was thinking of xp. Link to comment Share on other sites More sharing options...
Novex Posted July 31, 2003 Author Share Posted July 31, 2003 thanks for clearing up how the router works, Ill remember that and try to convince my parents since that was the only thing stopping me bringing it up (the fact it acts as a dhcp server I think is wonderfull). Also I have no idea how to use another IP, Im thinking that Id plug the network cable into the hub instead of the gateway pc and then just connect from each computer separately but again, not too sure about that side of things.. this is what the Services window looks like at the moment as well? Link to comment Share on other sites More sharing options...
Mando Posted August 1, 2003 Share Posted August 1, 2003 The reason I dont particurly want to buy a router is because firstly I see no need to spend the money when I can find a cheap alternative, secondly I have parents to convince which is always a challenge in itself, and thirdly our ISP will only let a max of 7 separate IPs on the internet under our name (my understanding is that a router assigns each PC a different "internet" IP) and any more we have to start paying extra, Im getting around this at the moment by chanelling all the PCs through the one IP..I looked at the ICS portmapping but I couldnt make any sense of it, Ill attempt that again.. On the ICS fact have you got any idea how to do it? so far Ive got under services Service Port Number: 80 TCP name or address of server computer on privaate network: 192.168.0.9 Ive tried "Charles", "192.168.0.9:80", "\\Charles", "Charles:80" and its all still not working when I try to access it through my external IP :pinch: dood if your using a router/firewall using NAT and DHCP mac address cloning your isp doesnt know how many systems are connected and does not have anyway of finding out dood. thats a valid reason to use one in itself. I have one MAC address issued to Blueyonder here in the uk and have had a total of 4 wired and 8 wifi system connected at same time all using full facilities. The ISP only sees the IP addy/MAC addy of the router (and registered nic mac addy) and cannot see past your hardware firewall. Link to comment Share on other sites More sharing options...
Novex Posted August 1, 2003 Author Share Posted August 1, 2003 Yeah Mando, I realised this fact, but the chances of my parents spending the money on a router when this is working perfectly for them isnt very high, so Im still looking for a back up method through software. Link to comment Share on other sites More sharing options...
kaptain chump Posted August 1, 2003 Share Posted August 1, 2003 dude yeah. what theyre saying about the 7 ips is if you hook up a hub or something that doesnt DHCP and hook up computers that recieve thier own WAN ip addresses. Theres no way to tell if soeone has more than 7 pcs behind a router anyways (that i know of). And if you run a small ntwork, how is this a valid excuse for not buying a router in the first place? Link to comment Share on other sites More sharing options...
Novex Posted August 2, 2003 Author Share Posted August 2, 2003 because we can achieve the same effect without one? Im working on the router thing, its a possibility but this isnt helping the original question of this thread, how to do it WITHOUT a router? Link to comment Share on other sites More sharing options...
AndyD Posted August 2, 2003 Share Posted August 2, 2003 Novex, again there isn't a way. The main computer is acting on part of the other computers when it tries to connect to anything, which is why you get that IP. Either get the router or deal with it :) Link to comment Share on other sites More sharing options...
[XS] Posted August 2, 2003 Share Posted August 2, 2003 or if you've got an old comp lying round the house, set up a linux distro on it and set it up as a router... Link to comment Share on other sites More sharing options...
Novex Posted August 3, 2003 Author Share Posted August 3, 2003 Im working on the router thing, looking rather good actually, but there is definately no software that will forward the "real" IP address instead of that pcs? also we did the Linux thing a looong time back, it failed rather miserably cause Im the only one who knows something about Linux (and thats a very minimal amount) so when something went wrong (and it did) our only solution was to re-install the distro, windows is easier than that for me so I opted ICS. Link to comment Share on other sites More sharing options...
AndyD Posted August 4, 2003 Share Posted August 4, 2003 Novex, the PC would have to fake it's IP to do that. So no there isn't a way. Link to comment Share on other sites More sharing options...
MistaT40 Posted August 4, 2003 Share Posted August 4, 2003 You can't ask the PC to fake its IP. Otherwise it won't register itself on your network...if you know what i mean. Link to comment Share on other sites More sharing options...
Recommended Posts