From mboxrd@z Thu Jan 1 00:00:00 1970 From: Alex Samad Date: Mon, 10 Dec 2007 21:29:32 +0000 Subject: Re: [LARTC] PAT HOW to - IPTABLES Message-Id: <20071210212931.GA8267@samad.com.au> MIME-Version: 1 Content-Type: multipart/mixed; boundary="===============1631217064==" List-Id: References: <7ed6b0aa0712100220n57ea0e54x628d539621cb6b35@mail.gmail.com> In-Reply-To: <7ed6b0aa0712100220n57ea0e54x628d539621cb6b35@mail.gmail.com> To: lartc@vger.kernel.org --===============1631217064== Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="zhXaljGHf11kAtnf" Content-Disposition: inline --zhXaljGHf11kAtnf Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Dec 10, 2007 at 04:09:52PM +0530, Indunil Jayasooriya wrote: > > > > > > > > see cache_peer !! > > > > squid can load balance between 3 servers and cache it !! > > > > run squid on your box with real ip.. > > > > Thanks for your quick answer. I know about reverse proxy. I wanted to k= now > > that without squid, whether iptables it self can handle this situation. >=20 >=20 > Suppose, I have 3 mail servers @ DMZ zone with one real ip. the situation > as before? >=20 > in that case, What can I do? your could use exim/postfix and route the mail to the right server, but I g= uess=20 you are trying to find out how to have port 25 on the real ip nat'ed to one= of=20 the 3 dmz'ed ip based upon the destination mail address short answer you can't as far as I know, iptables only looks at src ip / sr= c=20 port & dest ip/dest port. You could write your own plugin module to look i= nto=20 the tcp stream. >=20 >=20 > Hope to hear form you. >=20 >=20 > --=20 > Thank you > Indunil Jayasooriya > _______________________________________________ > LARTC mailing list > LARTC@mailman.ds9a.nl > http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc --zhXaljGHf11kAtnf Content-Type: application/pgp-signature; name="signature.asc" Content-Description: Digital signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFHXa+7kZz88chpJ2MRAqjiAJ9SDSbqnh5SabIoxT0rWcmtq+1lVQCgwWPO G/w6lU/FhhlIoCaBz23jstA= =1Nzh -----END PGP SIGNATURE----- --zhXaljGHf11kAtnf-- --===============1631217064== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc --===============1631217064==--