Re: can iptables distinguish difference between domains?

To: debian-isp@lists.debian.org
Subject: Re: can iptables distinguish difference between domains?
From: Michael Loftis <mloftis@modwest.com>
Date: Wed, 09 Mar 2005 12:56:46 -0700
Message-id: <[🔎] 90301850C569713F4560CA7B@d216-220-25-60.dynip.modwest.com>
In-reply-to: <[🔎] 20050309193347.95362.qmail@web52402.mail.yahoo.com>
References: <[🔎] 20050309193347.95362.qmail@web52402.mail.yahoo.com>

--On Wednesday, March 09, 2005 11:33 -0800 "Shannon R."<shannon_mtbikes@yahoo.com> wrote:

good day list!


we have limited public IPs and we're trying to run as
many web servers behind 1 public IP as we can.

now re iptables capability. can it distinguish the
difference between destinations like, e.g.,
deb1.debian.org and deb2.debian.org even if both
domains resolve to the same public ip address?

No. You need some sort of higher level stuff than is default....There aresome projects out tehre to provide some of this funcionality, but what youmight be better off doing is using a reverse proxy apache setup orsoemthing similar and let it decide who to proxy the connection to. Thedownside is you'll lose track of who's connecting from where on the endservers. Another downside is the current netfilter modules that allow forthis sort of behaviour are all pretty resource intensive.

Reply to:

Follow-Ups:
- Re: can iptables distinguish difference between domains?
  - From: Scott Edwards <supadupa@gmail.com>

References:
- can iptables distinguish difference between domains?
  - From: "Shannon R." <shannon_mtbikes@yahoo.com>

Prev by Date: Re: can iptables distinguish difference between domains?
Next by Date: [OT] WEP on iBook -- was: Re: securing a WLAN with PPP (or the like)
Previous by thread: Re: can iptables distinguish difference between domains?
Next by thread: Re: can iptables distinguish difference between domains?
Index(es):
- Date
- Thread