Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!

Let shared internet users web browse without Apache Network
When enabling Internet Sharing in the Sharing preference pane, those using the built-in firewall are warned that computers sharing their internet connection will be unable to browse the web. The proposed solution is to enable the Personal Web Sharing service, which launches the Apache web server and opens the ports necessary for web traffic across the firewall.

Fortunately, it's easy to share an internet connection without running Apache. Under the Firewall tab, click the New button to add a firewall rule. Set the Port Name to Other, and enter the following list for both the TCP and UDP Port Numbers: 80, 443. In the Description field, enter Web Access for Internet Connection Sharing, and click OK to finish.

As long as the new entry is checked, computers sharing the internet connection with your Mac will be able to browse the web using http (port 80) and https (port 443).
    •    
  • Currently 1.00 / 5
  • 1
  • 2
  • 3
  • 4
  • 5
  (1 vote cast)
 
[6,711 views]  

Let shared internet users web browse without Apache | 4 comments | Create New Account
Click here to return to the 'Let shared internet users web browse without Apache' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Let shared internet users web browse without Apache
Authored by: Ptero-4 on Nov 11, '05 09:57:17AM

A question. When you say a shared internet connection. Are you meaning that the firewalled OSX box is giving or taking the link?



[ Reply to This | # ]
Let shared internet users web browse without Apache
Authored by: eamonc on Nov 11, '05 11:49:55AM

Giving.



[ Reply to This | # ]
Let shared internet users web browse without Apache
Authored by: ptwithy on Nov 11, '05 01:14:34PM

I open the following ports in my firewall when I am sharing my internet connection. I have a single rule called 'Internet Sharing' that lists all these ports:

22, 25, 43, 53, 80, 143, 443, 993, 5190

These are, respectively: ssh, smtp, whois, dns, http, imap, https, imaps, aol (ichat).

Since I am not running any of these servers on my mac (except ssh, which I have secured to only permit public-key logins), there is really not an issue with having these ports open.

I only share on occasion, such as sharing a hotel DSL line over my wireless connection so the rest of the folks in the room can be on line, so http, mail, and ichat are usually sufficient. If the people sharing need other services, you can add them to the list.

If you run Little Snitch, it can be a handy way of noticing when someone tries to access another service and discovering what port you would need to open.



[ Reply to This | # ]
Let shared internet users web browse without Apache
Authored by: sparcleosx on Nov 14, '05 10:27:10AM

I don't see why you open the UDP ports as well.. http and https are TCP based.



[ Reply to This | # ]