I would like to dnat certain protocols (HTTP, HTTPS, SSH) to the
contents of an ipset (lan:+serviceshost or similar) where the ipset is
ensured to contain only one host, but can be changed dynamically when
services are in maintenance mode and go to the "services are down"
message on another ser
On Sep 17, 2011, at 2:02 PM, Christ Schlacta wrote:
> I would like to dnat certain protocols (HTTP, HTTPS, SSH) to the
> contents of an ipset (lan:+serviceshost or similar) where the ipset is
> ensured to contain only one host, but can be changed dynamically when
> services are in maintenance
Can you recommend an alternate method to accomplish my desired outcome?
I want to switch dynamically which host a (set of) dnat rules point to
without having to restart shorewall.
On 9/17/2011 14:38, Tom Eastep wrote:
> On Sep 17, 2011, at 2:02 PM, Christ Schlacta wrote:
>
>> I would like to dn
On Sep 17, 2011, at 3:20 PM, Christ Schlacta wrote:
> Can you recommend an alternate method to accomplish my desired outcome?
> I want to switch dynamically which host a (set of) dnat rules point to
> without having to restart shorewall.
>
Use iptables directly to insert and delete DNAT rule
On Sat, 2011-09-17 at 15:39 -0700, Tom Eastep wrote:
> On Sep 17, 2011, at 3:20 PM, Christ Schlacta wrote:
>
> > Can you recommend an alternate method to accomplish my desired outcome?
> > I want to switch dynamically which host a (set of) dnat rules point to
> > without having to restart shore
