Re: Exposed Host
Errmm.. Correct me if I'm wrong, but forwarding all traffic for a
"public address" to the host with that address sounds a bit
like routing to me. Try "man route".
> I have a box with a 2.2.17 kernel doing ip masquerading. I've figured
> out how to foward individual ports of the external address to
> individual ports on an internal address but how can I forward all
> traffic on all ports from the external address to one of the internal
> addresses?
>
> I know this isn't very secure, but I'm not very concerend about
> security becuase it isn't our responsibility in this case. We manage a
> small office building of executive suites and provide high speed
> internet for our tenants on the DSL line. One of our tenants would
> like a public address. In this case it is his responsibility to secure
> his system. Could there be a risk to some of the other tenants by a
> cracker getting access to their systems through the host that as all
> traffic forwarded to it? But, I guess if there was they don't really
> understand the different between private and public ip addresses and
> should consider themselves exposed anyway and security is again there
> responsibility since we haven't made any guarantees about their
> security.
>
> Anyway, if this is possible using impasqadm or if someone has a better
> idea, I'd appreciate some advice.
--
Paul Haesler paul@phaesler.org
ICQ: 124547085
Reply to: