[TriLUG] OwnCloud network setup question

Carl Crider c.crider at gmail.com
Tue Jul 2 12:07:15 EDT 2013 

Thank you Igor.

Yes, more of a DMZ set up. I should have used that term.
I have my TWC modem (set as a bridge), out to my Linksys router, and there
is a smart switch off of that (not that it plays a role in this).
Just looking to make the external access as safe and separate as possible
from my internal network. Reading what I've typed, I see
your point with the IP issue. My internal LAN machines have static IP's;
this would be ideal for the OwnCloud access as well.







On Tue, Jul 2, 2013 at 11:06 AM, Igor Partola <igor at igorpartola.com> wrote:

> iptables/ip6tables would be the way to go to restrict access. It's not
> clear exactly what your setup is. Will the NIC2 get its own public IPv4
> address that's separate from your main router?
>
> Is your main goal here to make OwnCloud inaccessible from the LAN (as in
> put it into a real DMZ), or just to make it easier to access OwnCloud
> without doing port forwarding?
>
> DynDNS will not help with firewalling, only with making access from the
> WAN easier, if your public IPv4 address changes.
>
> Igor
>
> On Tue, Jul 02, 2013 at 10:55:37AM -0400, Carl Crider wrote:
> > Hey guys,
> >
> > I recently finished a new Debian media server / XBMC setup, and I would
> like
> > to run OwnCloud on it as well. The OwnCloud install and config is
> straight
> > forward, but my question is about networking.
> >
> > I'm thinking of installing another NIC that will be dedicated to OwnCloud
> > access. The idea is that I can connect this NIC directly to my bridge in
> > order to separate the internal LAN from the outside world.
> >
> > So the setup would be:
> > NIC1 - Internal LAN / my home network
> > NIC2 - OwnCloud access only
> >
> > Now to the questions:
> > Can someone suggest the best (secure) configuration for something like
> this?
> > Should I use iptables or something else?
> > Would it be easier to have DynDNS or similar? (note: easy is not always
> my
> > favorite way)
> >
> > Thanks
> >
> > ~Carl
>
> --
> This message was sent to: Carl <c.crider at gmail.com>
> To unsubscribe, send a blank message to trilug-leave at trilug.org from that
> address.
> TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
> Unsubscribe or edit options on the web  :
> http://www.trilug.org/mailman/options/trilug/c.crider%40gmail.com
> Welcome to TriLUG: http://trilug.org/welcome
>

More information about the TriLUG mailing list