Shorewall, Two Public IPs and Two different servers
I am trying to get shorewall to allow DNAT port 80 on a speific public ip to goto another internal server and when a different ip is used it should go to a different server for exapmle
public ip 1.1.1.1. go to 10.0.14.2 and public ip 1.1.1.2 goto 10.0.14.3
#################################################################################################### #########
#ACTION SOURCE DEST PROTO DEST SOURCE ORIGINAL RATE USER/
# PORT PORT(S) DEST LIMIT GROUP
# PORT PORT(S) DEST LIMIT GROUP
#
DNAT:info net loc:10.0.14.103 tcp 3389
DNAT:info net loc:10.0.14.103 udp 3389
DNAT net loc:10.0.14.6 tcp www 80 1.1.1.1
DNAT net loc:10.0.14.7 tcp www 80 1.1.1.2
DNAT net loc:10.0.14.6 tcp 5003
DNAT net loc:10.0.14.6 tcp 443
Everytime i try this I get a connection failed, if i take out on of the DNAT rules and take out the orginal Dest then it works fine but I have two different web servers that I am trying to get access to from outside.
any help would be apreciated,
I am using fedora 4 and shorewall 3.0
|