multiple public ips to multiple internal ips

multiple public ips to multiple internal ips

[Patrick Chemla]

Hi,

I need to setup a router to match multiple public ips to multiple 
internal ips.

I need to do it one by one, because I want it to be dynamic.

I mean: I want to be able to change external ip for a specific server at 
any time. I am building a set of scripts where an internal server will 
request from the router to change his external ip. The router will 
change and reload his configuration dynamically.

I have a set of 10 public ip addresses for about 5 internal servers.

My router is a Linux Fedora 11 box, kernel 2.6.30.10-105.fc11.x86_64 
with iptables-1.4.3.1-1.fc11.x86_64 installed.

Is there somewhere a step by step howto to help me configure iptables? 
Maybe a thread in this list?

I checked some threads but I found only configurations for range of ips, 
not for individual ips.

I checked some iptables Howtos: There are a lot about one public ip to 
multiple internal, I haven't found any on multiple to multiple.

Thanks for help
Patrick

Re: multiple public ips to multiple internal ips

[Patrick Chemla]

Hi all,

I would like to add a question:

I am quite a newbie in this field.

If one of my network interface is connected to the public side, and 
receive 16 public ips from my ISP, do I have to declare 16 alias to my 
network interface?

If there are 128 ips, I should declare 128 aliases???

Thanks
Patrick


Le 30/01/2010 23:10, Patrick Chemla a écrit :
> Hi,
>
> I need to setup a router to match multiple public ips to multiple 
> internal ips.
>
> I need to do it one by one, because I want it to be dynamic.
>
> I mean: I want to be able to change external ip for a specific server 
> at any time. I am building a set of scripts where an internal server 
> will request from the router to change his external ip. The router 
> will change and reload his configuration dynamically.
>
> I have a set of 10 public ip addresses for about 5 internal servers.
>
> My router is a Linux Fedora 11 box, kernel 2.6.30.10-105.fc11.x86_64 
> with iptables-1.4.3.1-1.fc11.x86_64 installed.
>
> Is there somewhere a step by step howto to help me configure iptables? 
> Maybe a thread in this list?
>
> I checked some threads but I found only configurations for range of 
> ips, not for individual ips.
>
> I checked some iptables Howtos: There are a lot about one public ip to 
> multiple internal, I haven't found any on multiple to multiple.
>
> Thanks for help
> Patrick
>

Re: multiple public ips to multiple internal ips

[Sven-Haegar Koch]

On Sun, 31 Jan 2010, Patrick Chemla wrote:

> I would like to add a question:
> 
> I am quite a newbie in this field.
> 
> If one of my network interface is connected to the public side, and 
> receive 16
> public ips from my ISP, do I have to declare 16 alias to my network 
> interface?
> 
> If there are 128 ips, I should declare 128 aliases???

Why not just route the real ips on to the real servers? Why use 
internal IPs for the servers and DNAT at all on their public side?

Filtering can happen just as good on the real IPs, no need to hassle
with NAT.

c'ya
sven

-- 
Three may keep a secret, if two of them are dead.
- Ben F.