Shawn wrote: > Thanks John (and Juan). The problem here is that we have more domains > than IP addresses. And the public should not have to worry about using > different ports for the usual services. To keep the problem simple, > imagine a single external IP address to service all the domains. In > this case, the simple forwarding rules no longer do the job. (Though I > do agree that this is the right way if we had more IPs...) > > As for Juan's suggestion of using IPTables directly, I'll have to do > some digging. I'm not sure if an IPTable rule based on the requested > domain name can be done. (I know it's possible for requested IP/port, or > destination IP/Port...) But my initial looking suggests this isn't > possible (at least not yet). > > Shawn
After doing some further reading, it appears that IPTables is not the right tool for filtering based on domain name. Instead I've seen references suggesting a proxy server is the better tool for this. So, can anyone who works with Squid comment? Can it handle this type of domain forwarding? Thanks. Shawn _______________________________________________ clug-talk mailing list [email protected] http://clug.ca/mailman/listinfo/clug-talk_clug.ca Mailing List Guidelines (http://clug.ca/ml_guidelines.php) **Please remove these lines when replying
