From: "denny @ d - Rex . net" <[email protected]>
> because the cost of ip addresses,
> why not implement NAT/ipchain in VSD, so that each virtual domain
> have one local ip (192.168.x.x) instead of real ip.
> all share only one (or two for dns) real ip and then VSD decide
> which local ip to use.
>
> this will also make the whole system more SECURE.
> because virtual host do not have real ip, it's invisible to outsider.
> this way, VSD automagically function as a firewall too.
>
How would VSD decide which local ip to use?
HTTP/1.1 is the only protocol which sends a hostname with the request (and
that's at the application level anyway). For all other protocols the only
thing VSD has to work with is the destination ip. If the destination ip is
the same for every virtual server, it can't tell them apart. So every
virtual server must have its own real ip.
