OSX Server DNS/firwall - LAN configuration problem

Discussion in 'Mac OS X Server, Xserve, and Networking' started by stevewynn, Nov 5, 2010.

  1. stevewynn macrumors newbie

    Jan 25, 2010

    Sorry for a newbie question, but I just bought a mac mini server with snow leopard server. I got such a sweet deal that i opted for the server with SLS rather than the standard mini with SL although i think the server config is abit more than i can handle.

    1) I do not want the server to be accessed from the internet. (btw it is configured behind my cable modem and then my router with dhcp.)

    2) The only need i have for the server is hulu/web tv services as well as some shared folders for my lan clients and space for client time machine backups.

    However how can i safely can i configure the dns and firewall so its only accessible through my local network? It seems so simple but i get abit worried that i let all doors open to my new server.

    I chose a myservername.private as the dns entry. I do not see any need to configure it towards a real domain if not necessary. I have flipped the switch on on the firewall in server preferences only exposing screen sharing.

    Sorry for my ignorance, but could anyone tell me if this is all i need to do without leaving errors behind and keep the door open to the internet? I have tried to read up on the topic, but i do find it quite hard to grasp the topic of dns and security settings on the server.

    Any advice would be greatly appreciated! :)
  2. ITASOR macrumors 601


    Mar 20, 2005
    In your router, simply DO NOT forward any ports or turn on the DMZ feature (I assume you're using just like a home Linksys router) and it will not be accessible from the internet.

    This, plus turning on your software firewall (as you mentioned you did), is all you need for what you're using the server for.
  3. stevewynn thread starter macrumors newbie

    Jan 25, 2010
    Okay. Thanks for the advice. :)

    No forwarding ports okay. But the firewall is just a switch ;).

    I still need to enable screen sharing in the firewall to be able to administer it remotely on my local network. How about remote ssh. No worries?

Share This Page