From owner-freebsd-questions@FreeBSD.ORG Tue Oct 28 14:30:26 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C9AA916A4CE for ; Tue, 28 Oct 2003 14:30:26 -0800 (PST) Received: from kende.dyndns.org (12-238-182-59.client.attbi.com [12.238.182.59]) by mx1.FreeBSD.org (Postfix) with ESMTP id 06F2643FB1 for ; Tue, 28 Oct 2003 14:30:26 -0800 (PST) (envelope-from andras@kende.com) Received: from ak ([10.1.1.20]) by kende.dyndns.org (8.12.9/8.12.9) with ESMTP id h9SKUd86000643; Tue, 28 Oct 2003 14:30:42 -0600 (CST) (envelope-from andras@kende.com) Message-Id: <200310282030.h9SKUd86000643@kende.dyndns.org> From: "Andras Kende" To: "'Lewis Thompson'" , "'FreeBSD-questions'" Date: Tue, 28 Oct 2003 16:30:13 -0600 MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Mailer: Microsoft Office Outlook, Build 11.0.5510 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 In-Reply-To: <20031028143531.GH288@lewiz.org> Thread-Index: AcOdYN5jk53L/rtDRC6rL/Ml7jMGxQAQin/g Subject: RE: Complicated ipfw/ipf forwarding. X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 28 Oct 2003 22:30:26 -0000 -----Original Message----- From: owner-freebsd-questions@freebsd.org [mailto:owner-freebsd-questions@freebsd.org] On Behalf Of Lewis Thompson Sent: Tuesday, October 28, 2003 8:36 AM To: FreeBSD-questions Subject: Complicated ipfw/ipf forwarding. Hi, I have a public IP address and a couple of machines sitting behind a FreeBSD router doing NAT. I'm using ipnat and ipf right now (although I used to use natd/ipfw so I don't mind switching -- I started using ipf/ipnat because of an odd problem with 5.1-RELEASE but I'm switching back to 4.9 now) and wondered if it was possible to do forwarding based on DNS. For example Apache is clever enough to support virtual hosts based on the address requested. Is there any way at all to do this for forwarding on the router? For example if I had three CNAMES for the same IP red, pink and blue. Could I have red.foo.bar forwarded to 192.168.0.2, pink.foo.bar forwarded to 192.168.0.3 and say blue.foo.bar go to the local machine (i.e. the router)? Thanks very much, -lewiz. -- I was so much older then, I'm younger than that now. --Bob Dylan, 1964. ------------------------------------------------------------------------ -| msn:purple@lewiz.net | jabber:lewiz@jabber.org | url:www.lewiz.org |- -------------------------------------------------- Im not 100% sure but: If you want to forward traffic from 1 public ip to multiple internal http servers on the same port to red, pink and blue You could setup name based hosts at apache to do proxy redirect to the inside http servers on the freebsd router firewall machine... Andras Kende http://www.kende.com