Redirect incoming http and https to LAN

Networking
1

My IPFire is behind a Fritz!Box as an exposed host and I want to redirect all incoming http and https to a docker container in LAN.

I’ve set up a firewall rule as described here however it seems no traffice gets through. I’m logging this FW rule and not a single entry can be found in the logs.

My public IP is set using dyndns service at all-inkl.de, pinging one of my subdomains shows the current public IP address.

Using curl http://sub.domain.de shows

<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p>The requested URL was not found on this server.</p>
</body></html>

At that time I expected a single log in FW logs, but there is none.

Any ideas what’s happening?

2

:thinking:

  1. Ensure that “Log rule” is selected.

    Ensure that “Rule position” is in the correct processing order.

    obraz
    obraz200×109 1.1 KB

  2. Ensure that the computer with the “docker container” accepts connections from public addresses.

edit

I did a simple test using my smartphone and the cellular network.
I identified the visible public address of the smartphone (e.g., using https://whatsmyip.com/ or a similar website).
Then I opened WUI–>Logs–>Fw-Loggraps (IP)

obraz
obraz383×288 4.33 KB

If IPFire blocks the connections, “DROP_INPUT” was displayed.

obraz

If IPFire redirected traffic, “FORWARDFW” was visible.
obraz

Regards

1 Like
3

Looks like an established connection to the server. If the server is not reachable curl will output

curl: (7) Failed to connect to sub.domain.de port 80 after xxx ms: Couldn’t connect to server

The problem is not the firewall, the server seems to have no default document that is served if no file is requested.

2 Likes