Re: Firewall protects, so what directs?

To: <debian-firewall@lists.debian.org>
Subject: Re: Firewall protects, so what directs?
From: "Simon Higgs" <simonhiggs@bigfoot.com>
Date: Mon, 18 Mar 2002 19:37:23 -0000 (GMT)
Message-id: <[🔎] 36645.192.168.1.2.1016480243.squirrel@debian.higgs.org>
Reply-to: simonhiggs@bigfoot.com
In-reply-to: <[🔎] B8BB6FFD.1F50%sysadmin@black-gear.com>
References: <[🔎] B8BB6FFD.1F50%sysadmin@black-gear.com>

Thomas Cook said:
> I have spent the last few months constructing an ipchains firewall for
> my computer lab.  I finally got everything working a week or so ago,
> but I realized there is noting telling things where to go.
>
> My firewall divides my network into an internal lab (10.0.0.0/24, all
> ip_forward and MASQ on the firewall), and a DMZ for my servers
> (10.10.0.0/24).  The firewall tells all the packets where they can and
> cant go, but how do I tell packets where they should go?  For
> example...
>
> Lets say my external ip is 1.2.3.4.  So someone on the internet plugs
> 1.2.3.4 in their browser.  The browser contacts my firewall's external
> interface asking for connect on port 80.  How do I tell my firewall to
> direct that www request to 1.2.3.4 into a request to 10.10.0.10 port 80
> (my apache server)?
>

In a previous post you suggested that you have assigned dynamic IP's to both
networks. I can't see how this can work.I'd at least assign static IP's to
the servers.

http://www.linuxdoc.org/HOWTO/IP-Masquerade-HOWTO/forwarders.html
http://www.linuxdoc.org/HOWTO/IPCHAINS-HOWTO-7.html

Simon.

-- 
Simon Higgs.

Reply to:

Follow-Ups:
- Re: Firewall protects, so what directs?
  - From: Thomas Cook <sysadmin@black-gear.com>

References:
- Firewall protects, so what directs?
  - From: Thomas Cook <sysadmin@black-gear.com>

Prev by Date: Re: Firewall protects, so what directs?
Next by Date: Re: Firewall protects, so what directs?
Previous by thread: Re: Firewall protects, so what directs?
Next by thread: Re: Firewall protects, so what directs?
Index(es):
- Date
- Thread