From owner-freebsd-questions@FreeBSD.ORG Sun Feb 6 12:35:10 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AE43016A4CE for ; Sun, 6 Feb 2005 12:35:10 +0000 (GMT) Received: from hulk.superhero.nl (superhero.nl [213.84.142.150]) by mx1.FreeBSD.org (Postfix) with ESMTP id 99C3843D31 for ; Sun, 6 Feb 2005 12:35:09 +0000 (GMT) (envelope-from gelsemap@superhero.nl) Received: (qmail 41860 invoked by uid 1003); 6 Feb 2005 12:35:07 -0000 Received: from 10.202.77.10 by hulk.superhero.nl (envelope-from , uid 89) with qmail-scanner-1.24 (clamdscan: 0.80/533. spamassassin: 2.64. Clear:RC:1(10.202.77.10):. Processed in 1.736858 secs); 06 Feb 2005 12:35:07 -0000 Received: from unknown (HELO spiderman) (10.202.77.10) by hulk.superhero.nl with SMTP; 6 Feb 2005 12:35:03 -0000 From: "Gelsema, Patrick" To: "'Chris Hodgins'" Date: Sun, 6 Feb 2005 13:35:03 +0100 Message-ID: <000501c50c48$480c9550$0a4dca0a@superhero.nl> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.6626 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1441 In-Reply-To: <4204E0BB.3090905@cis.strath.ac.uk> Importance: Normal cc: freebsd-questions@freebsd.org Subject: RE: natd or firewall problem? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Feb 2005 12:35:10 -0000 I think that has to depend on how your natting and firewalling is set up. Aka how do you manage incoming traffic, outgoing and forwarding traffic between 2 interfaces. I'm using ipchains for it, and I got my rules per interface setup, and do thorough checks regarding sources. But it is something that could work. Just have to work out your firewall rules. I use 2 types of dns, one for internal use, and the other for external. My 0,2 cents Patrick > -----Original Message----- > From: Chris Hodgins [mailto:chodgins@cis.strath.ac.uk] > Sent: Saturday, February 05, 2005 4:06 PM > To: Gelsema, Patrick > Cc: 'Cristian Salan'; 'Gelsema, Patrick'; > freebsd-questions@freebsd.org > Subject: Re: natd or firewall problem? > > > Gelsema, Patrick wrote: > > Thats right, you can do the following: > > Put the ip-address with its FQDn > (www.webserverwhatever.com) in every > > hosts file (taken its windows) or in its hosts file on > freebsd. Or you > > run an internal DNS with an internal zone for your domain whilst > > running on the internet the external zone. > > > > Regards, > > > > Patrick > > > > Out of interest, why would using the external ip address not work. > Would the packets not just be directed out to the router as per usual > and then the router would notice it should forward the packets to the > www server? What am I missing? The only problem I can think > of might > be sending packets back to the internal ip address. > > Thanks > Chris > > [snip] >