He said he wanted to forward to those internal IP's. In order to do
that, the hostname has to resolve to an IP on his gateway server. If
all of the names resolve to the same IP, it can't work.
If he could add additional IP addresses to the server, he could forward
that traffic internally, but t
On Mon, 8 Jul 2002, David Talkington wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Mike Burger wrote:
>
> >IPtables can work based on name resolution...
>
> ... a quantum leap of faith, if you don't control and trust the
> nameserver.
Fair enough. In this case, I own, control
Actually, you're partially right...the original request did state that all
three resolve to teh same address, but he then noted that he wanted
"one.cc.com to go to 213.93.43.84, and the other two to go to the 192.168
address.
Hence my thought process.
On 8 Jul 2002, Gordon Messmer wrote:
> T
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Mike Burger wrote:
>IPtables can work based on name resolution...
... a quantum leap of faith, if you don't control and trust the
nameserver.
- -d
- --
David Talkington
PGP key: http://www.prairienet.org/~dtalk/0xCA4C11AD.pgp
-BEGIN PGP SIG
The original request stated that all hostnames resolve to the same IP
address. In that configuration, ipchains nor iptables can be used to
redirect traffic internally. When the TCP connections are made, the
kernel doesn't know what hostname the client looked up to reach that
address. That infor
Actually, it might be able to do so.
IPtables can work based on name resolution...I have a port opened for a
particular service based on a system's hostname...this is done because the
system has a dynamic DNS thing going on, and occasionally his IP does
change.
If the firewall system knows to
It can't be done based on hostname, though. No hostname information is
transmitted in the packets of an IP stream (except as transport-level
data).
Peter~ you might be able to use Apache as a proxy server for your
internal servers two.cc.com and three.cc.com.
On Sun, 2002-07-07 at 17:49, Mike B
First, since you want "one.cc.com" to go to a different external IP, you
should just set the DNS entry for one.cc.com to the IP you want.
As far as forwarding the other two to an internal IP, yes, IPtables can do
this for you, via nat.
On Sat, 6 Jul 2002, Peter Gosens wrote:
> Is it possible
Is it possible to make iptables forward packets
based on hostname.
I've one.cc.com and two.cc.com three.cc.com
pointing to 213.93.43.28 . And I want that
traffic with one.cc.com is going to 213.93.43.84. But the two.cc.com and
three.cc.com traffic need to be forwarded to an internal netw
