I can't connect my DMZ webserver!

[dreamer]

hi! 

Follow is my network.
rl0
 xl0 ||-- DMZ(webserver, dns, ftp)
router--| OBSD3.2   |
 ||-- client
rl1
Problem is my webserver(win2000).  This webserver have 3 sites.

my pf.conf is follow.
xl0=128.134.54.151
rl0=192.168.0.1
rl1=10.0.0.1
webserver=192.168.0.2

//
rdr on xl0 proto tcp from any to 128.134.54.151 port 80 - 
192.168.0.2 port 80

for test
If i use a single site in my webserver(linux), that is ok! I can 
connect my webserver!

If i telnet to my webserver, i can connecto to 80 port.
ex)telnet www.xxx.xx.xx 80
GET / HTTP/1.0
= I can found page not found!

anyone help me!

ps)I am not familier english. I am sorry!(for my expression!)

Re: I can't connect my DMZ webserver!

[Daniel Hartmeier]

On Sun, Mar 30, 2003 at 10:15:50PM +0900, dreamer wrote:

 If i telnet to my webserver, i can connecto to 80 port.
 ex)telnet www.xxx.xx.xx 80
 GET / HTTP/1.0
 = I can found page not found!

The problem is not with pf or the redirection, but name based virtual
hosting at the web server. If you don't use dedicated IP addresses for
each domain, the web client must provide the domain in the HTTP host
header, otherwise the web server has no way of knowing which of the
several domains the client wants.

Try

  $ telnet www.xxx.xx.xx 80
  GET / HTTP/1.0
  Host: www.domain.tld

and see http://httpd.apache.org/docs/vhosts/name-based.html.

If the HTTP TCP connection is redirected, you get an established
connection, and can talk HTTP to the web server, the problem is beyond
pf.

Daniel