Re: IP forwarding?
not knowing enough about networking, I've got a couple of questions...
1) and probably most obvious - why would your visitors be using IP numbers?
2) what would there be, technically, stopping an attack on IP 1.2.3.x at
1.2.3.x? I mean, if you've mapped or routed requests to 1.2.3.x to go to
5.6.7.x , what's will stop the attack before it gets to 5.6.7.x ?
3) isn't there other sucurity methods in place (firewall) or that can be
put in place easier than doing all of the mapping (while getting visitors
off of using IP numbers)?
4) have you got a hardware firewall/gateway?
5) in the case of web services - assuming the use of the Apache web
server - couldn't you configure it to reject requests with an IP, and on the
error page tell the visitor to use a certain domain name? Wouldn't that be
easier than doing all of this mapping?
6) by "visitors" I'm assuming you're talking about outside of the
----- Original Message -----
From: "Jason Lim" <email@example.com>
Sent: Wednesday, March 30, 2005 9:28 AM
Subject: IP forwarding?
I am trying to come up with a solution to a network problem, but i haven't
got much idea how to do it. If you could just give me a couple of
suggestions I could search on Google and research further.
I basically have 2 networks, each with 32 IPs.
Say the first network is 18.104.22.168-32
and the second network is 22.214.171.124-32
Is there a way to make it so requests for 126.96.36.199 go to 188.8.131.52, and
go to 184.108.40.206, so basically map 220.127.116.11-32 to go to 18.104.22.168-32?
They are two separate neworks, each with their own network and bandwidth.
But basically i'd like to have it so that 22.214.171.124 is the IP i give to
people, but behind the scenes, the data is transferred transparently to
server at 126.96.36.199 instead?
VISITOR --> 188.8.131.52 --> 184.108.40.206 --> SERVER
It doesn't matter if the SERVER is configured with 220.127.116.11 or 18.104.22.168 as
it's IP. But the visitor should only know about 22.214.171.124.
Essentially, this is what you would do if you were moving datacenters or
something, as a temporary solution.
Hope someone can help! I tried looking at IP MASQURADING but that doesn't
seem to be the right thing ,and IP FORWARDING doesn't seem right either.
I missing a solution?
Thanks in advance!
To UNSUBSCRIBE, email to debian-isp-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact