[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] Problems with SuSEFirewall

On Thursday 09 October 2003 18:58, Sturgis, Grant wrote:

> One solution is to have split DNS.  The inside DNS points www to the inside
> address (i.e. 192.168.x.x) while the outside (public) DNS points to the
> public IP address.

That's overkill, since he is not running DNS at the moment (looking at the 
firewall settings). If he doesn't feel the need to do so, a redirection rule 
in his firewall to redirect the traffic to the internal IP address of the 
webserver is sufficient:

iptables -A PREROUTING -d <external IP webserver> -p tcp -m tcp --dport 80 \
	-t nat -j DNAT --to-destination <internal IP webserver>

Best  regards,

Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here