Re: Help!! Is this true??

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Tony Earnshaw <tonni@billy.demon.nl>
To: OTR Comm <otrcomm@isp-systems.com>
Cc: iptables <netfilter@lists.samba.org>
Subject: Re: Help!! Is this true??
Date: 10 Jun 2002 11:02:19 +0200	[thread overview]
Message-ID: <1023699740.9979.19.camel@billy.demon.nl> (raw)
In-Reply-To: <3D043D33.41AED997@isp-systems.com>

[-- Attachment #1: Type: text/plain, Size: 1430 bytes --]

man, 2002-06-10 kl. 07:46 skrev OTR Comm:

> Is it true that iptables does not support virtual interfaces for virtual
> domains?

> That is, I have many virtual domains setup on virtual interfaces to eth0
> (e.g. eth0:1 xyz.xyz.xyz.xyz) currently running on a system with
> ipchains.  I am thinking about converting to a new kernel with iptables,
> but I can not get iptables to work with the virtual interfaces on eth0. 
> I setup a test server to verify that iptables would work, but I can not
> access any of my test domains (i.e., web sites through Apache) when I
> have the IP for the domain tied to a virtual interface.  If I shutdown
> my iptables firewall, I can access the web sites fine.

> What's up here, anybody got any ideas and solutions?

Instead of using aliases, if you have iproute2 installed and can use the
'ip' utility, give your eth0 (and perhaps other devices) actual
addresses.

The ip command is poorly - or rather too comprehensively - documented
and 'ip help' needs some fathoming, but here's a useful reference:

http://leaf.sourceforge.net/devel/ericw/ip-syntax.php

Best,

Tony

-- 

Tony Earnshaw

e-post:		tonni@billy.demon.nl
www:		http://www.billy.demon.nl
gpg public key:	http://www.billy.demon.nl/tonni.armor

Telefoon:	(+31) (0)172 530428
Mobiel:		(+31) (0)6 51153356

GPG Fingerprint = 3924 6BF8 A755 DE1A 4AD6 FA2B F7D7 6051 3BE7 B981
3BE7B981

[-- Attachment #2: Dette er en digitalt signert meldingsdel --]
[-- Type: application/pgp-signature, Size: 189 bytes --]

next prev parent reply	other threads:[~2002-06-10  9:02 UTC|newest]

Thread overview: 3+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2002-06-10  5:46 Help!! Is this true?? OTR Comm
2002-06-10  9:02 ` Tony Earnshaw [this message]
  -- strict thread matches above, loose matches on Subject: below --
2002-06-10  9:29 Hard__warE

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1023699740.9979.19.camel@billy.demon.nl \
    --to=tonni@billy.demon.nl \
    --cc=netfilter@lists.samba.org \
    --cc=otrcomm@isp-systems.com \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.