From: Techside Security <security@techside.it>
To: netfilter@lists.netfilter.org
Subject: 2 Internet connection and one local network
Date: Thu, 04 Jan 2007 10:37:08 +0100 [thread overview]
Message-ID: <459CCAC4.8010007@techside.it> (raw)
Hi,
in my company I have to switch to another provider and for a while I
have to maintain both the internet connection.
I have 2 server that is reachable from internet that is natted 1:1 with
local ip.
INTERNET OLD (32 public ip) INTERNET NEW (32 public ip)
| |
| |
-------------------------
| |
| FIREWALL |
| |
-------------------------
|
|
LAN (private network)
Now, the firewall nat all the connection from static ip to local ip for
the 2 server (WEB, MAIL) and for the navigation of the client.
public ip 1 -----> FRW ------> local mail server ip
public ip 2 -----> FRW ------> local web server ip
client navigation ------> FRW --------> default public ip (! mail,! web)
The problem is that I can't let to be reachable the server from both
internet connection. Now work only for one connection (with iproute2 and
rules) based on the source local ip of the server.
I have tried with MARK, CONNMARK, CONNTRACK but I'm confused about it.
There is a way to make this working ?
All info are very appreciated.
Thanks.
next reply other threads:[~2007-01-04 9:37 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-01-04 9:37 Techside Security [this message]
2007-01-04 11:08 ` 2 Internet connection and one local network Matt
-- strict thread matches above, loose matches on Subject: below --
2007-01-09 8:27 Techside Security
2007-01-10 9:37 ` Matt
2007-01-10 14:43 ` Techside Security
2007-01-10 14:39 ` Matt
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=459CCAC4.8010007@techside.it \
--to=security@techside.it \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.