As was foretold, we've added advertisements to the forums! If you have questions, or if you encounter any bugs, please visit this thread: https://forums.penny-arcade.com/discussion/240191/forum-advertisement-faq-and-reports-thread/
Options
HOSTS and the internet
mfrogg
Registered User regular
Registered User regular
So I know you can use Hosts file in windows to kind of pre-dns lookup names. This works great when blocking ad sites and such from your computer. What I'm interested in, I don't know if I can accomplish without a vpn setup.
What I want to do is use Hosts to say a computer in my workgroup is over the net at another IP.
Ie - CompA, CompB, CompC are behind a router with a netIp of 72.16.2.15.
CompD is behind a router with a netIP 186.4.4.5
can I put in the CompA, B, and C Hosts files :
CompD 186.4.4.5
Then access it from CompA as \\CompD\? I'm sure ports would have to be forwarded and stuff.
The more I think about it, the more VPN seems a must for this thing, but I'm curious if this workaround might work?
Do I even know what I'm asking? Not sure...
What I want to do is use Hosts to say a computer in my workgroup is over the net at another IP.
Ie - CompA, CompB, CompC are behind a router with a netIp of 72.16.2.15.
CompD is behind a router with a netIP 186.4.4.5
can I put in the CompA, B, and C Hosts files :
CompD 186.4.4.5
Then access it from CompA as \\CompD\? I'm sure ports would have to be forwarded and stuff.
The more I think about it, the more VPN seems a must for this thing, but I'm curious if this workaround might work?
Do I even know what I'm asking? Not sure...
mfrogg on
0
Posts
Presuming you do the appropriate work setting up the access (e.g. Windows file share), there is no reason this wouldn't work. You can map CompD to that IP in the hosts file just fine -- basically, if you can get to a point where you can access the machine at \\186.4.4.5\, you can put the line you have there in your hosts file and \\CompD\ will do the same thing.
The gotcha is the routing. If CompD is using NAT (or in modern parlance, a firewall), the connection won't work because most firewalls don't allow incoming connections. You'll have to set up port forwarding for this to work.
The problem is, I'm using an SQL Server Express, and my clients look for "compD" as the server for their program. But the clients are around the country, and I'm in WI. So I was hoping pointing compD in their hosts to my router with various points enabled would help. Though the ports for SQL Server express are only 2.. I think it'd work, because the program would look for that host and there's no sharing going on, just the SQL ports.. hot dang, maybe...
It's not exactly dangerous either. The internet couldn't function if all ports were blocked.
You just have to trust the software that is listening on those ports. Keeping the software up to date is fairly important.
Inbound ports, not outbound
Besides, MS SQL Server best practices says pretty clearly: "Do not expose a server that is running SQL Server to the public Internet." (http://download.microsoft.com/download/8/5/e/85eea4fa-b3bb-4426-97d0-7f7151b2011c/SQL2005SecBestPract.doc)
Obviously exposing a database to the internet is risky, but it's not impossible to protect.
When XP was still fairly new I had figured out you could run IIS on it and I thought it was cool. So I put that in, then turned on FTP. I don't remember if I just didn't have a firewall/NAT or what, but my computer was owned and unusable within 12 hours.
On another occasion I had an old box with Win2000 running SQL Server 2000 and the SQL Slammer worm took down my entire LAN until I figured it out (I don't think this particular problem is a concern anymore, though).
So, yeah, don't expose services to the 'net unless you have them properly set up to do so. A web server is usually safe to open up port 80 on, since you know it doesn't work otherwise. A database server (or any non-public facing service) should never be exposed directly and ideally should be firewalled behind the webserver that uses it.
TL;DR: use vpn
SC2 NA: exoplasm.519 | PA SC2 Mumble Server | My Website | My Stream