Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have some computers behind a router at my apartment. I understand some fundamentals about ip addresses. I setup a web server on one of those computers. I unfiltered port 80 on that computer and on the router, I port forwarded http requests on port 80 to the internal ip address of that computer that's running the web server.
My question is.
I noticed that in order to view that web page outside of the network, I'd put in the external ip address of the router, which would forward the http request to port 80 on that computer running a web server. So are the external ip addresses for the router and the computers behind the router the same? I mean, I went to www.whatismyip.com on each of those computers behind the router at my apartment and they all had the same external ip address as the router.
For instance, let's say the internal ip address of one computer is 192.168.1.103
How would I get to that computer from outside the network without having the router port forward the request?
Would the external ip address of that computer with the internal ip address of 192.168.1.103 be something like 34.83.42.11 (external ip address of router, fake btw) plus something appended to it. Maybe like
34.83.42.11 3321 ?
How do I find out the distinct external ip address of that computer? Does it depend on the netmask or something?
In your situation, your ISP is effectively giving 1 public IP address to your router.
That is the only public IP address involved here.
All the computers INSIDE your network (behind the router) have *private* IP addresses used for local networking. Those addresses only work inside the router.
Forwarding allows outside systems to start communications with only the inside computers that have router ports forwarded to them.
Also, if packets addressed to private IP addresses are encountered by routers on the internet, they are supposed to drop them. See http://www.faqs.org/rfcs/rfc1918.html, Section 3 for more details.
Consider for a moment what a router actually does, and how it does it.
You've got three or four computers on one side of the router, all talking to the Internet through one cable that hooks into your cable-modem or DSL line. You have one IP-address as seen by the Internet: all three or four computers are all using the same (Internet-facing) IP.
How does this work? In exactly the same way that a gigantic company can have just one external phone number. When you want to talk to Joe Schmedly, you call that number and ask for extension 12345, Joe answers.
In TCP/IP parlance, that "extension" is called a port number. The various outbound packets that are sent by the various computers inside your shop are seen as coming from (and being directed to) specific port-numbers. All of this magic is handled invisibly by the Router.
On the inward-facing side, the Router can route packets directly from one computer to another, if those addresses are "inside." Various addresses, like "192.168.x.x," are by-convention defined to be "inside only." It also defines one internal IP-address for the so-called "gateway." That's how outward-bound traffic gets delivered to the Internet.
Distribution: Debian, Arch Linux, Linux Mint, Ubuntu, Fedora, Suse, Mepis, Redhat, Sayabon, mandrake and android (
Posts: 192
Rep:
Quote:
Originally Posted by sundialsvcs
Consider for a moment what a router actually does, and how it does it.
You've got three or four computers on one side of the router, all talking to the Internet through one cable that hooks into your cable-modem or DSL line. You have one IP-address as seen by the Internet: all three or four computers are all using the same (Internet-facing) IP.
How does this work? In exactly the same way that a gigantic company can have just one external phone number. When you want to talk to Joe Schmedly, you call that number and ask for extension 12345, Joe answers.
In TCP/IP parlance, that "extension" is called a port number. The various outbound packets that are sent by the various computers inside your shop are seen as coming from (and being directed to) specific port-numbers. All of this magic is handled invisibly by the Router.
On the inward-facing side, the Router can route packets directly from one computer to another, if those addresses are "inside." Various addresses, like "192.168.x.x," are by-convention defined to be "inside only." It also defines one internal IP-address for the so-called "gateway." That's how outward-bound traffic gets delivered to the Internet.
Like that simple explanation
I still like to use Airport explanation
meaning The tower controls the airplanes from landing so u wouldn't want two airplanes to land on same run way or you have crash.... same idea two packets addressed to two different computers cant land on the same computer or a crash session...
IP addresses starting with 192.168 are always private. There is also a range below 172 that is private (can't remember now). 127.0.0.1 is also private, it's the current machine.
You need port forwarding because everything from the outside is addressed to your public address, and you have to direct it to the proper PC on your private network. In your case a public web server, due to port 80.
What would happen if you're on a computer that is outside my network and you receive packets from one of the computers in my internal network?
Let's say the computer from outside the network receives packets from computer A in my internal network trying to view a web server on the computer outside the network on it's port 80. In the packet logs, it'll show that the packet came from the router's public address.
However, what if the computer from outside the network receives another packet from computer B in my internal network trying to view a web server on the computer outside the network on it's port 80. In the packet logs, it'll show the packet came from the router's public address right? Would the source ip look any different at all?
Cause I think I remember seeing some number appended to the end of the source ip address specifying that private computer.
I'd test it out, but I don't have an external computer to use atm.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
.
