Re: debian server with two public IPs

To: debian-user@lists.debian.org
Subject: Re: debian server with two public IPs
From: Jeremy Ardley <jeremy@ardley.org>
Date: Mon, 20 Mar 2023 17:43:14 +0800
Message-id: <[🔎] 022a1ef6-45ee-0fd1-b2c6-71f12b2cba12@ardley.org>
In-reply-to: <ZBgll4S3PRd/fp0s@tuxteam.de>
References: <[🔎] b196ac0ef74218c1200e7337e82baaab@dnsbed.com> <[🔎] CAOQdWPEC3hxp=a2=CK-1jmro3MLH8R22+-GKs7EteHegi3zN_A@mail.gmail.com> <[🔎] d515bfd7-f2a4-ae58-9dd5-07ad88b8eead@ardley.org> <ZBgll4S3PRd/fp0s@tuxteam.de>


On 20/3/23 17:21, tomas@tuxteam.de wrote:


I get the impression the problem is to send return traffic back out on the
interface it came in on.

If this is it, then rp_filter, as I proposed elsewhere in this
thread, seems like exactly made for this.

I'm afraid poking kernel parameters is beyond my pay grade, but I canjust about do a nat and firewall using iptables.

I was thinking it should be possible to use iptables to do connectiontracking and return data on the incoming interface, or better, prefer toreturn on that but use the other interface if not possible



--
Jeremy
(Lists)

Reply to:

References:
- debian server with two public IPs
  - From: fh@dnsbed.com
- Re: debian server with two public IPs
  - From: Stanislav Vlasov <stanislav.v.v@gmail.com>
- Re: debian server with two public IPs
  - From: Jeremy Ardley <jeremy@ardley.org>
- Re: debian server with two public IPs
  - From: <tomas@tuxteam.de>

Prev by Date: openexr-viewers in Bookworm?
Next by Date: Re: debian server with two public IPs
Previous by thread: Re: debian server with two public IPs
Next by thread: Re: debian server with two public IPs
Index(es):
- Date
- Thread