Doug Sampson wrote:
Can I bind more than one public IP address to an external interface in Dachstein 1.02CD? If so, how? I've googled around to no avail. If not, is there another app that does this? Bering?
The reason for this is I wish to port-forward packets to another web server that is behind the firewall. Port 80 is already used by this one web server. I do not wish to force users to add the port designation at the end of the URL in order to reach the second web server. So I got around to thinking that if I could bind a different public IP address to the external interface, then add a rule to the firewall stating that if someone comes knocking at this IP address at port 80 to please forward the packets to the second web server.
I'm fully aware that I could establish port-forwarding at the ISP's name server redirecting http packets to a different port- say 8000- which could be redirected to port 80 of the second web server. I just would like to see if I can avoid paying extra bucks for the port-forwarding feature. I happen to have a few unused public IP addresses left.
Is that possible?
Yes.
Use eth0_IP_EXTRA_ADDRS="ip.ad.dr.es" in network.conf to add additional public IP's to the router's external interface.
Once you have the new IP(s) assigned, you can then allow inbound port 80 traffic through the firewall and port-forward that traffic to an internal machine.
When finished, you should have added something like the following three lines to your network.conf file (IP addresses adjusted for your actual network, of course):
eth0_IP_EXTRA_ADDRS="1.2.3.4" EXTERN_TCP_PORT0="0/0 www 1.2.3.4" INTERN_SERVER0="tcp 1.2.3.4 www 192.168.1.123"
NOTE: The EXTERN_TCP_PORT0 and INTERN_SERVER0 settings are indexed lists, which means the suffix (0 in the above example) has to start at zero and there can be no missing numbers (ie:
INTERN_SERVER0=...
INTERN_SERVER1=...
INTERN_SERVER2=...
...
If you already have some of these rules defined, you'll need to adjust the index accordingly.
-- Charles Steinkuehler [EMAIL PROTECTED]
-------------------------------------------------------
This SF.Net email sponsored by Black Hat Briefings & Training.
Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
