Hi guys, I need a help and not know what to look for help files. I have a gateway which responding for 2 ips and each of the ips I have a http server. The http servers not running on the firewall. The question is: how to pass the requests on port 80 that fall in IP1 and IP2 to the correct machines? I will be grateful for any hint. I had never worked with a firewall which responding for more than a static ip. Thank you all. -- Fábio R Corrêa ------------------------------------------------------------------------------ All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity and more. Splunk takes this data and makes sense of it. Business sense. IT sense. Common sense. http://p.sf.net/sfu/splunk-d2d-oct
On 13/10/2011 20:36, Fabio Correa wrote:> Hi guys, I need a help and not know what to look for help > files. I have a gateway which responding for 2 ips and each of the ips > I have a http server. The http servers not running on the firewall. > The question is: how to pass the requests on port 80 that fall in IP1 > and IP2 to the correct machines? I will be grateful for any hint. I > had never worked with a firewall which responding for more than a > static ip. Thank you all. > >Hi, /etc/shorewall/rules DNAT net loc:192.168.201.1 tcp www - EXT_IP1 DNAT net loc:192.168.201.2 tcp www - EXT_IP2 ------------------------------------------------------------------------------ All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity and more. Splunk takes this data and makes sense of it. Business sense. IT sense. Common sense. http://p.sf.net/sfu/splunk-d2d-oct
On Oct 13, 2011, at 11:36 AM, Fabio Correa wrote:> Hi guys, I need a help and not know what to look for help > files. I have a gateway which responding for 2 ips and each of the ips > I have a http server. The http servers not running on the firewall. > The question is: how to pass the requests on port 80 that fall in IP1 > and IP2 to the correct machines? I will be grateful for any hint. I > had never worked with a firewall which responding for more than a > static ip. Thank you all. >See http://www.shorewall.net/Shorewall_and_Aliased_Interfaces.html for a description of the things that you can do with multiple IP addresses. You probably want to look at the DNAT section. -Tom Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity and more. Splunk takes this data and makes sense of it. Business sense. IT sense. Common sense. http://p.sf.net/sfu/splunk-d2d-oct
Fabio Correa wrote:>I have a gateway which responding for 2 ips and each of the ips >I have a http server. The http servers not running on the firewall. >The question is: how to pass the requests on port 80 that fall in IP1 >and IP2 to the correct machines?It depends on what your internet connection is. If it''s PPP then all you need to do is add the right DNAT (IIRC) rule for each server. If you have an ethernet connection then you''d need to add the second IP as an alias to the outside interface - but I think Shorewall will do this automatically if you turn that on. It might help if you give a few more details about your connection. -- Simon Hobson Visit http://www.magpiesnestpublishing.co.uk/ for books by acclaimed author Gladys Hobson. Novels - poetry - short stories - ideal as Christmas stocking fillers. Some available as e-books. ------------------------------------------------------------------------------ All the data continuously generated in your IT infrastructure contains a definitive record of customers, application performance, security threats, fraudulent activity and more. Splunk takes this data and makes sense of it. Business sense. IT sense. Common sense. http://p.sf.net/sfu/splunk-d2d-oct