On Wed, 27 Sep 2000, <[EMAIL PROTECTED]> wrote:
> People,
> There's this Linux box with eth0 and eth1, a firewall.
> They have both FTP and apache running on it also.
> (I know, I know. We're trying to get a second box for them as a server.)
> How do we (can we) get one set of services on the eth0 (Internet) side, and
> another on the eth1 (LAN) side?
> Is it only in the firewall rules, not to allow certain things out on the net?
> Or can I have different inetd.conf files for different interfaces?
If one of the sets of intended users (that is "internal users" vs.
"external users") is small and/or knowledgeable, you could just run 2nd
instances of httpd and ftpd and have the daemons listen on non-standard
ports (e.g. 8080 and 4000 respectively). Adjust the firewall rules to
protect the ports for internal users only, and then instruct the small
and/or knowledgeable set of users to use non-standard set of ports.
I mention this since it relatively easy and general to set up, but if
any of the users are "clue-free" it is a bad idea. They won't be able
to handle the difference and you will handle the support of
explaining it to them.
Hopefully you will be able to find a way to do what you want within these
specific applications (httpd and ftpd), but if not the above hack would
work in a pinch...
Karl Runge
**********************************************************
To unsubscribe from this list, send mail to
[EMAIL PROTECTED] with the following text in the
*body* (*not* the subject line) of the letter:
unsubscribe gnhlug
**********************************************************
