Routing Multiple Inbound IP Addresses -- How?

Janina Sajka janina at rednote.net
Tue Nov 29 19:06:06 EST 2005 

Cool, Gregory. I'll check this out and report back. It does sound like
what I'm looking for. Thanks.

Gregory Nowak writes:
> Ok, I think I see what you're going for.
> 
> In the below examples, I assume that you have an external ip, 1.2.3.4,
> which you want to route to 192.168.0.1, and a second external ip,
> 5.6.7.8, that you want to route to 192.168.0.2. I also assume that
> your network device connected to the dsl modem is eth0.
> 
> iptables -t nat -A PREROUTING -i eth0 --source 1.2.3.4 -j DNAT
> --to-destination 192.168.0.1
> 
> and
> 
> iptables -t nat -A PREROUTING -i eth0 --source 5.6.7.8 -j DNAT
> --to-destination 192.168.0.2
> 
> Note 1:, I know I'm using incorrect number ranges for the external ip
> addresses.
> 
> Note 2: This might have line wrapped, so be sure to check for that if
> doing cut and paste.
> 
> Note 3: I obviously haven't tested this, but it should work in theory,
> as far as I understand iptables syntax. If you get errors, let me or
> the list know, and I'll try to resolve them. Hth.
> 
> Greg
> 
> 
> On Tue, Nov 29, 2005 at 08:24:37AM -0500, Janina Sajka wrote:
> > Hi, Sina:
> > 
> > Didn't remember the term multihoming. I'll check that out.
> > 
> > So, here's my situation. My ISP provides me multiple ip addresses, if I
> > want them. I want to take advantage of that in a way I think is
> > appropriate. It would be easy if I just used the external, routable ip
> > addresses directly--one for each machine perhaps.
> > 
> > But, I want to keep my internal, nonroutable scheme intact. For one
> > thing, I have more machines than routable addresses. For another thing,
> > I'd like the freedom to use the routables by function, rather than
> > specific machine, meaning that I might migrate internally from one
> > machine to another at some point, without changing the externals.
> > 
> > So, how do I do that NAT? Let's say I have four IP addresses. They're
> > discontinguous. Internally, I have seven or eight machines (depending on
> > the day).
> > 
> > Here's what I know I can do. I can route traffic arriving on address A
> > port 80 to machine A-Prime port 80, and route traffic arriving on
> > address B port 80 to machine B-Prime.
> > 
> > But, can I route traffic arriving on address C, whatever port, to
> > machine C-Prime? Without specifying all the particular ports one at a
> > time? Or as some kind of gargantuan range like 1-32767?
> > 
> 
> 
> -- 
> Free domains: http://www.eu.org/ or mail dns-manager at EU.org
> 
> 
> _______________________________________________
> Speakup mailing list
> Speakup at braille.uwo.ca
> http://speech.braille.uwo.ca/mailman/listinfo/speakup

-- 

Janina Sajka				Phone: +1.240.715.1272
Partner, Capital Accessibility LLC	http://www.CapitalAccessibility.Com

Marketing the Owasys 22C talking screenless cell phone in the U.S. and Canada--Go to http://www.ScreenlessPhone.Com to learn more.

Chair, Accessibility Workgroup		Free Standards Group (FSG)
janina at freestandards.org		http://a11y.org

More information about the Speakup mailing list