Re: IP forwarding?

To: <debian-isp@lists.debian.org>
Cc: "Jason Lim" <maillist@jasonlim.com>
Subject: Re: IP forwarding?
From: "Robert Cates" <robert@kormar.de>
Date: Wed, 30 Mar 2005 17:37:22 +0200
Message-id: <[🔎] 003001c5353e$5e28e4f0$0d01a8c0@kormar.net>
Reply-to: "Robert Cates" <robert@kormar.de>
References: <[🔎] 0a1301c534fa$0cfd91a0$4bedfea9@tw1>

Hi,

not knowing enough about networking, I've got a couple of questions...

1)  and probably most obvious - why would your visitors be using IP numbers?

2) what would there be, technically, stopping an attack on IP 1.2.3.x at1.2.3.x? I mean, if you've mapped or routed requests to 1.2.3.x to go to5.6.7.x , what's will stop the attack before it gets to 5.6.7.x ?3) isn't there other sucurity methods in place (firewall) or that can beput in place easier than doing all of the mapping (while getting visitorsoff of using IP numbers)?

4)  have you got a hardware firewall/gateway?

5) in the case of web services - assuming the use of the Apache webserver - couldn't you configure it to reject requests with an IP, and on theerror page tell the visitor to use a certain domain name? Wouldn't that beeasier than doing all of this mapping?

6) by "visitors" I'm assuming you're talking about outside of thenetwork.(?)


Thanks, Robert

----- Original Message -----From: "Jason Lim" <maillist@jasonlim.com>

To: <debian-isp@lists.debian.org>
Sent: Wednesday, March 30, 2005 9:28 AM
Subject: IP forwarding?

Hi all,

I am trying to come up with a solution to a network problem, but i haven't
got much idea how to do it. If you could just give me a couple of
suggestions I could search on Google and research further.

I basically have 2 networks, each with 32 IPs.

Say the first network is 1.2.3.1-32
and the second network is 5.6.7.1-32

Is there a way to make it so requests for 1.2.3.1 go to 5.6.7.1, and1.2.3.2

go to 5.6.7.2, so basically map 1.2.3.1-32 to go to 5.6.7.1-32?

They are two separate neworks, each with their own network and bandwidth.
But basically i'd like to have it so that 1.2.3.1 is the IP i give to

people, but behind the scenes, the data is transferred transparently tothe

server at 5.6.7.1 instead?

So basically:
VISITOR --> 1.2.3.1 --> 5.6.7.1 --> SERVER

It doesn't matter if the SERVER is configured with 1.2.3.1 or 5.6.7.1 as
it's IP. But the visitor should only know about 1.2.3.1.

Essentially, this is what you would do if you were moving datacenters or
something, as a temporary solution.

Hope someone can help! I tried looking at IP MASQURADING but that doesn't

seem to be the right thing ,and IP FORWARDING doesn't seem right either.Am

I missing a solution?

Thanks in advance!

Jas
Sincerely,


--
To UNSUBSCRIBE, email to debian-isp-REQUEST@lists.debian.org

with a subject of "unsubscribe". Trouble? Contactlistmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: IP forwarding?
  - From: "Jason Lim" <maillist@jasonlim.com>

References:
- IP forwarding?
  - From: "Jason Lim" <maillist@jasonlim.com>

Prev by Date: Re: IP forwarding?
Next by Date: Re: Timeout after DATA
Previous by thread: Re: IP forwarding?
Next by thread: Re: IP forwarding?
Index(es):
- Date
- Thread