[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Sheflug] Re: Iptables

To: "'shef-lug-admin@xxxxxxxxxxxxxxxxxxx '" <shef-lug-admin@xxxxxxxxxxxxxxxxxxx>, "''Sheffield LUG ' '" <shef-lug [at] xxxxxxxxxxxxxxxxxxx>
Subject: RE: [Sheflug] Re: Iptables
From: xxxxx [at] xxxxxxxxxxxxxxxxxxx
Date: Sun, 5 May 2002 16:35:04 +0100
Envelope-to: pieter [at] meiring.freeserve.co.uk
List-help: <mailto:shef-lug-request [at] list.sheflug.org.uk?subject=help>
List-id: Sheflug <shef-lug.list.sheflug.org.uk>
List-post: <mailto:shef-lug [at] list.sheflug.org.uk>
List-subscribe: <http://community.uklinux.net/mailman/listinfo/shef-lug>,<mailto:shef-lug-request [at] list.sheflug.org.uk?subject=subscribe>
List-unsubscribe: <http://community.uklinux.net/mailman/listinfo/shef-lug>,<mailto:shef-lug-request [at] list.sheflug.org.uk?subject=unsubscribe>
Reply-to: shef-lug [at] xxxxxxxxxxxxxxxxxxx
Sender: shef-lug-admin [at] xxxxxxxxxxxxxxxxxxx


>> I'm trying to portforward some services and would like internal
>> clients to use the same address as external clients.
>
>Not going to work; don't even bother. Use a split DNS system to provide
>internal addresses to internal clients and external addresses to
>external clients.

But isn't that even more horrible, running 2 DNS servers each purporting to
be authoritative for mydomain.org but one answering requests for internal
clients and the other for external ones. 

I thought there may be a more elegant solution using iptables..?


#Rewrite packets from lan with ip address destination $EXTIP port 80 to
$PORTFWIP:80
 $IPTABLES -A PREROUTING -t nat -i $INTIF -p tcp -d $EXTIP  --dport 80 \
-j DNAT --to $PORTFWIP:80

Or .. er .. something like that. 

Alan Dawson
___________________________________________________________________

Sheffield Linux User's Group -
http://www.sheflug.co.uk/mailfaq.html

  GNU the choice of a complete generation.

Follow-Ups:
- Split DNS (was: RE: [Sheflug] Re: Iptables)
  - From: xxxxx

Prev by Date: Re: [Sheflug] Re: Iptables
Next by Date: Split DNS (was: RE: [Sheflug] Re: Iptables)
Previous by thread: RE: [Sheflug] good web host
Next by thread: Split DNS (was: RE: [Sheflug] Re: Iptables)
Index(es):
- Date
- Thread