[Masq] Re: forward traffic to more than on internal host(autofw)?

Sun, 17 Sep 2000 09:31:57 -0700 

/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! 
/* ALSO: Don't quote this header. It makes you look lame :-) */


Hi.

first of all - thanks for your quick response to my question!

This all sounds very interesting to me... ... I don't understand it in the
right way.

I'm using ipchains on that box with an ip aliased setup like Ashley showed
in the last eMail. Additionally I have set up some policy rules via
Alexey Kuznetsov's iproute tool to make sure that the traffic from some
internal hosts is send out with the correct aliased ip on the external interface.

When these are the aliases:

    eth0      111.222.222.10  ->  192.168.1.4
    eth0:0    111.222.222.20  ->  192.168.1.5
    eth0:1    111.222.222.30  ->  192.168.1.6

I use

    ip rule add from 192.168.1.6 table 1
    ip route add default via 111.222.333.1 src 111.222.222.30 table 1

to make sure that requests to 111.222.222.30 are not answered with the primary
ip on eth0, but with the alias ip on eth0:1.


What I don't understand is: Doing it this way, we make sure that all requests
are answered with the correct IP. Does the IP Stack take care of it? Do we
already have the problem with low port requests which go to the primary IP
on eth0?

Dave, perhaps you can explain me that in simple words, because I haven't
knowledge of IP Stack internals? 

On Sat, Sep 16, 2000 at 12:15:49PM -0700, David Ranch wrote:

>  >111.222.333.444:25 (eth0).  And the same goes for all other ports, with the
>  >*exception* of pcAnywhere ports, which get redirected to the internal hosts 
> via
>  >-ipportfw-.  Anything other than pcAnywhere ports will just end up on the 
> masq
>  >box.
> 
> Is PcAnywhere UDP vs. TCP?

PcAnywhere uses 5631 as TCP data port and 5632 as UDP control or status port.
I'm not sure if that is what you want to know.


Volker

_______________________________________________
Masq maillist  -  [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/ -- 
THIS INCLUDES UNSUBSCRIBING!
or email to [EMAIL PROTECTED]

PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.

Reply via email to