Need advice on forwarding based on domainname.

I have a setup where i have 2 linux boxes.

BOX1:
NIC1: Public Static IP address
NIC2: Private IP 192.168.1.10

BOX2:
NIC1: Private IP 192.168.1.95

On box 1 i have some domainnames which are all hosted on that
machine, and works 100%

Now i want to have my new domain hosted on BOX2

So what i have tried to find information is how to forward
ALL requests (mail, ftp, www etc) comming to my new domain
through the public ip on BOX1 - to BOX2

An example.

domain1.net --> box1
domain2.net --> box1
(that works allready(

What i cant make work is :

domain3 --> box1 --> redirect --> box2

I have googled all day to no help

I hope someone can hep me :-)

Regards

Kim

Can you not just create another virtual host within apache on your first box that points through to your second box? I'm assuming that since they're all listening on the same external IP address, you have apache listening for the different incoming domain names. A new virtual host on your first machine can simply point to your second box, once apache and the website you require is already setup on your other box.

I thought about that as well, but as far as i could see, it would
be a WEB only - i would like one that covers ALL.

Web, mail, ftp etc...

Any suggestions recieved with great smile

Kim

squid has the ability to do all that

www.squid-cache.org

You can configure it to forward requests based on domain name, and then in the /etc/hosts file just put the box1 and box2 private ip addresses. Because squid checks that file first, it will forward requests to the private ip, rather than what a dns server out on the internet says. Then you would send both domains to the public ip address on box 1 and let squid sort them and send them to the private ip addresses hosted on the specific boxes. I do this now with just HTTP, but I know you can configure squid to forward all those ports (mail, ftp, etc)

I have been searching for an answer to the same question (for the exact same reason) for several days.

kimdenmark - were you able to use squid to forward the second domain to a different internal ip address?

I found this post on the same topic as well, but unfortunately the conversation died after some flaming...
http://www.linuxquestions.org/questi...ain+forwarding

Is there any way to accomplish this using iptables?

Any help out there would be greatly appreciated!

-- Cohnhead

hi

problem with iptables is that with basic config you'd need to have your 2 servers running on 2 different ports, cause it won't look inside the http packets to look at the name beeing used...
BUT, i saw a new target support in kernel 2.6.14: "string match support" is the name of the module as seen in make menuconfig, the option name is CONFIG_IP_NF_MATCH_STRING.
from the help:
This option adds a `string' match, which allows you to look for pattern matchings in packets.

so you should be able to use this to match the packets you want to forward and the ones you want to put in the incoming table...
i wont talk about performance, cause, as you may have found out, i never tried this target, but it is certainly not very efficient as string matching is far more complicated than looking to an ip address when you know at which bit in the packet is the begining and the end of this ip address.... but broadband is so slow compared to lan that it might work fine for a home user... i really dont know, but it's worth a try, i'd say.

good luck !