I am running shorewall-perl 4.2.7.1 on gentoo
It''s a basic 3 interface system, eth0 is LAN, eth1 is DMZ, eth2 is WAN
eth2 is connected to the Internet router and we have a /28 block of
addresses 217.x.x.144/28, 217.x.x.145 is the router, 217.x.x.146 is
assigned to the wan port of the linux box.
In the DMZ we have (amongst others) two servers running https based
services. Server 1 hosts a couple of remote access apps, server 2 hosts
a web application.
I am using one-one NAT setup using the /etc/shorewall/nat file mine
looks like this
Code:
########################################################################
#######
#EXTERNAL INTERFACE INTERNAL ALL LOCAL
# INTERFACES
x.x.x.147 eth2 192.168.36.3 No No
x.x.x.148 eth2 192.168.36.11 No No
x.x.x.149 eth2 192.168.46.2 No No
x.x.x.150 eth2 192.168.46.12 No No
x.x.x.151 eth2 192.168.46.10 No No
x.x.x.152 eth2 192.168.46.3 No No
#LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE
Does anyone know of a way that will allow me to direct incoming traffic
on 443 and 80 to different internal IP addresses even though it arrives
on the same external IP.
I tried using a DNAT rule in the rules file, problem is that directs
incoming traffic on any IP address to the same internal server which is
no good for me.
------------------------------------------------------------------------------
OpenSolaris 2009.06 is a cutting edge operating system for enterprises
looking to deploy the next generation of Solaris that includes the latest
innovations from Sun and the OpenSource community. Download a copy and
enjoy capabilities such as Networking, Storage and Virtualization.
Go to: http://p.sf.net/sfu/opensolaris-get