No access to home server

[witsok]

Hi,

So I have set up a home server on ubuntu.
Then I installed Direct Admin with Apache, mysql etc.
The router has a static public IP.
The server has the static IP of the router.
There is another local IP visible in the DA described as free.
I can trace the router IP using an external service like https://www.yougetsignal.com/
But can't get any successful ping of the router from the local network.
The server is not visible on the internet either.

What do I miss?

Witold

 

[BillyS]

I don't understand, you say you can trace the IP using an external service, then you say the server is not visible on the internet. Has the domain name populated? Are you sure your firewalls are allowing you to connect to the server? Are you using a residential or business internet service? Are you sure they allow incoming connections to ports 80 or 443?

 

[BillyS]

You might want to start troubleshooting with a tool like this one:

MX Lookup Tool - Check your DNS MX Records online - MxToolbox

mxtoolbox.com

 

[witsok]

I don't understand, you say you can trace the IP using an external service,

true

then you say the server is not visible on the internet.

the website is not visible though dns should be populated by now
btw, I'm using dns names created by DA.
ns1.server-ip.da.direct
these names have been registered with my registrar
when I trace dns names they point at the router's/server's IP

Has the domain name populated?

I think so

Are you sure your firewalls are allowing you to connect to the server?

FW on my router or the server.
Frankly, I jave no idea.
I opened ports 80 and 22 on the router.
But don't know what else I can do.

Are you using a residential or business internet service? Are you sure they allow incoming connections to ports 80 or 443?

Business connection

 

[BillyS]

ns1.server-ip.da.direct

The server needs a FQDN, typically something like server.yourdomainname.com

 

[witsok]

You might want to start troubleshooting with a tool like this one:

MX Lookup Tool - Check your DNS MX Records online - MxToolbox

mxtoolbox.com

domain resolves to IP correctly
DNS record is found and published

 

[BillyS]

Take a look here

General DNS | Directadmin Docs

DirectAdmin Knowledge Base

docs.directadmin.com

 

[witsok]

The server needs a FQDN, typically something like server.yourdomainname.com

so it should be like

ns1.domain.com ?
instead of
ns1.server-ip.da.direct

 

[BillyS]

yes - but with your domain name...

This I know to be true, I do not run my own name servers through DA,. so I will be of limited help

 

[BillyS]

Hostname selection during install

On new servers I've installed recently, the setup script picks a generic server-.da.direct hostname. The server already has a proper hostname, and it's valid in both forward and reverse DNS. Why does the install script insist on setting this third party hostname? At first glance, I can't find...

forum.directadmin.com

 

[witsok]

Hostname selection during install

On new servers I've installed recently, the setup script picks a generic server-.da.direct hostname. The server already has a proper hostname, and it's valid in both forward and reverse DNS. Why does the install script insist on setting this third party hostname? At first glance, I can't find...

forum.directadmin.com

server's hostname also is generic like server-ip.da.direct
should it also be changed to mydomain.com

 

[Richard G]

I opened ports 80 and 22 on the router.

That's not enough, you also need to forward -at least- port 53, 853 and 443.

ns1.server-ip.da.direct
these names have been registered with my registrar

You mean the ip's have been registered as you are not the owner of the da.direct domain.
Read what others said about that.

Change your nameservers and hostname to your own domain.
So for example server.domain.com and ns1.domain.com and ns2. domain.com if you want to use your own nameservers.

 

[witsok]

Take a look here

General DNS | Directadmin Docs

DirectAdmin Knowledge Base

docs.directadmin.com

well, I have everything set as per these instructions

 

[witsok]

That's not enough, you also need to forward -at least- port 53, 853 and 443.

I found this list of ports

Firewall | Directadmin Docs

DirectAdmin Knowledge Base

docs.directadmin.com

do I need to open the same ports on my router with public IP
or only in DA firewal

You mean the ip's have been registered as you are not the owner of the da.direct domain.
Read what others said about that.

Change your nameservers and hostname to your own domain.

So for example server.domain.com and ns1.domain.com and ns2. domain.com if you want to use your own nameservers.
Do I need to add an A record for server in server.mydomain.com?

 

[witsok]

one more thing.
when I try to log into the server using putty I can't use the router's public IP
only the local IP works for me
it it normal?

 

[ericosman]

one more thing.
when I try to log into the server using putty I can't use the router's public IP
only the local IP works for me
it it normal?

There could be multiple things eg;

Port is not forwarded (correctly)
You ISP blocks you from visiting your own IP (i'm from the netherlands and saw this happen to multiple people where i installed IP camera's with one specific provider)

Way to test it : setup a hotspot with your phone and try it (while on 4g/5g) or straight from your phone on 4g/5g.

 

[Richard G]

do I need to open the same ports on my router with public IP
or only in DA firewal

Both. But in DA firewall they are normally opened during Directadmin installation.
But this does not make it accessible from the internet if your behind a router due to the routers NAT and internal LAN ip's. So yes, for all services you want to use, you have to open those in your router with public ip and forward them to the ip of your DA server.

Do I need to add an A record for server in server.mydomain.com?

Possible, but it's better to create a seperate DNS entry via the DNS adminstration for server.mydomain.com so not as user.
This makes some other things easier, like getting SPF and DKIM record for the hostname so system and php mails don't run into issues.

when I try to log into the server using putty I can't use the router's public IP
only the local IP works for me

Login how to the server, via SSH or via port 2222?
This can have 2 reasons.
1.) You don't have set the port forwards correctly
2.) Your home router does not support nat-loopback otherwise called hairpin.

 

[Richard G]

Ah wrote at the same time as @ericosman but that is the way to test for sure, like he said, if port forwards are made.

 

[Ohm J]

if you just got only public ip but Router still same as simple home internet, mostly you need port forward on your router.

there have diference between "router for home" and "router for datacenter"

 

[witsok]

ok. so I've made some changes.

in the router config I found sth like host and put the public IP received from the ISP in there
I made port forwarding from external (router IP/host) to the local IP (the server)
From the local network now I can ping the router (public IP) and the server (local IP)

When I go to https://www.dnsqueries.com/en/dns_lookup.php
The website domain doesn't resolve to the router's IP / the public IP.

When i try to test the ports using just the router's IP / the public IP on

Open Port Check Tool - Test Port Forwarding on Your Router

Port checker is a utility used to identify your external IP address and detect open ports on your connection. This tool is useful for finding out if your port forwarding is setup correctly or if your server applications are being blocked by a firewall.

www.yougetsignal.com

I get that all ports are closed

in DA the server's IP is the same as the router's IP / public IP
maybe now it should be bound to local IP

what do you think?