HHmmm........ i used HAProxy to forward HTTP requests to my backend servers... it also forwards the originating IP address, it took 10 mins to set up....
However i still have the dilemma of mail originating ips pop3, imap, smtp... Thanks to all who replied.... Have a great day! Rob Morin Director of Technologies Dido Internet Inc. Montreal,Canada http://www.dido.ca 514-990-4444 Tom Eastep wrote: > Rob Morin wrote: > >> yes i agree, i rather not use NAT, but how do i configure Megs to >> redirect http traffic to another host on the same network with one NIC? >> > > We've already told you how to do that. You follow Shorewall FAQ 2 but rather > than use the 'loc' zone as described in the FAQ, you use the 'net' zone. > > Summary: > > a) Set the 'routeback' interface option on the one NIC in > /etc/shorewall/interfaces. > b) Add the appropriate DNAT rules to redirect the traffic. > c) Add an entry to /etc/shorewall/masq that sets the source IP address on > all outgoing traffic (on the one NIC) that doesn't originate from one of the > firewall's IP addresses (Hint: Place !ip1,ip2,... in the SOURCE column. > Hopefully you are using a recent enough Shorewall release that it isn't > called the SUBNET column in your file). > > -Tom > > ------------------------------------------------------------------------ > > ------------------------------------------------------------------------- > This SF.net email is sponsored by: Splunk Inc. > Still grepping through log files to find problems? Stop. > Now Search log events and configuration files using AJAX and a browser. > Download your FREE copy of Splunk now >> http://get.splunk.com/ > ------------------------------------------------------------------------ > > _______________________________________________ > Shorewall-users mailing list > Shorewall-users@lists.sourceforge.net > https://lists.sourceforge.net/lists/listinfo/shorewall-users > ------------------------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Still grepping through log files to find problems? Stop. Now Search log events and configuration files using AJAX and a browser. Download your FREE copy of Splunk now >> http://get.splunk.com/ _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
