firewall, apache and dns problem

Kevin Darcy kcd at daimlerchrysler.com
Wed May 29 21:08:30 UTC 2002


aaasssxxx at hotmail.com wrote:

> hi all:
>
> I have a network like this.
>
> internet
>   |
> (eth0)1.2.3.4
> ------------
> |          |  running dnscache on 127.0.0.1
> | firewall |  running dnscachex on 192.168.1.1
> |          |  running tinydns on 1.2.3.4
> ------------
> (eth1)192.168.1.1
>   |
> ------------------
> | network switch |
> ------------------
>   |
>   |__ 192.168.1.2
>
> firewall rules:
>
> iptables -t nat -A PREROUTING -p tcp -d $1.2.3.4:8080 --dport http -j
> DNAT --to 192.268.1.1:80
> iptables -t nat -A PREROUTING -p tcp -d $1.2.3.4:8081 --dport http -j
> DNAT --to 192.268.1.2:80
>
> Q1:
> a packet after arrived to 192.168.1.1 port 80, what does the web
> server at 192.168.1.1 see?
> does web server see the packet comes from 1.2.3.4:8080 or
> 192.168.1.1:80? or both?
>
> Q2:
> a packet after arrived to 192.168.1.2 port 80, what does the web
> server at 192.168.1.2 see?
> does web server see the packet comes from 1.2.3.4:8081 or
> 192.168.1.1:80? or 192.168.1.2:80 or all?
>
> how do I set web server At 192.168.1.2 can be surfed from internet?
>
> thanks

What does this have to do with BIND?


- Kevin




More information about the bind-users mailing list