Tony Green was once rumoured to have said:
> Help!
>
> I'm trying to get a virtual pop system working and I've run into a
> problem on the final stretch. I need to be able to get port forwarding
> working in a simple manner... here is the scenario.
>
> PHYSICAL SERVER
> |
> ----------------
> | |
> Virt IF1 Virt IF2
> | |
> Port 1000 Port 1000
>
>
> Clients connecting to port 1000 on VIF1 should be forwarded to port
> 1001 on the Physical server.
> Clients connecting to port 1000 on VIF2 should be forwarded to port
> 1002 on the Physical server.
>
> I have to run 2.2.x and redhat.
>
> Thus far I'm using ipchains/ipmasqadm with the following params....
>
>
> ipchains -I input -p tcp -y -d VIF1/32 1000 -m 1
> ipmasqadm mfw -I -m 1 -r PHYSICAL 1001 -p 10
>
> to try and get at least one side working (going off the man page of
> ipmasqadm).
Nononono!
ipmasqadm is wrong - its only good on routers, not endhosts.
`Transparent Proxying' is what you want.
what you have are rules like:
ipchains -A input -p tcp -d VIF1/32 1000 -j REDIRECT 1001
ipchains -A input -p tcp -d VIF2/32 1000 -j REDIRECT 1002
C.
--
--==============================================--
Crossfire | This email was brought to you
[EMAIL PROTECTED] | on 100% Recycled Electrons
--==============================================--
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://slug.org.au/lists/listinfo/slug
