Re: How best to route internal clients to internal web server?

From: Tauno Voipio (tauno.voipio_at_iki.fi.NOSPAM.invalid)
Date: 03/02/05

• Next message: Tauno Voipio: "Re: Hopeless Windows VPN client as gateway in a Linux Network?"
• Previous message: nntp chip: "Re: DWL-G122 and support for Linux"
• Maybe in reply to: James Blanford: "Re: How best to route internal clients to internal web server?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Date: Wed, 02 Mar 2005 09:13:35 GMT

Captain Dondo wrote:
> I have the following setup:
>
> an OpenBSD firewall. The only manchine on my network with a real IP.
> a Linux server, which provides web (and other) services.
> some linux clients.
>
> A request for the web server comes in to the firewall, which NATs and port
> forwards it to the internal server.
>
> But clients on the inside cannot cannot use the web server, unless I put
> appropriate host entries into the /etc/hosts file, resolving the 'real'
> name of the web server to the private IP address.
>
> Thus in /etc/hosts I must have
>
> 192.168.128.2 www.xxxx.com spam.xxxx.com
> order hosts,bind
>
> otherwise my internal clients cannot find the web server.
>
> Is there a better way to handle this than editing each and every
> /etc/hosts on the network?
>
> I run my own dhcp and bind servers, but I don't think I can use bind to
> serve up the domain names... ISTR the last time I tried, it wouldn't let
> me since I am not authoritative for the domain, and it wreaked havoc with
> DNS....
>

I'd put dnsmasq as internal network DNS server / cache
into the Linux gateway host, and put the internal
web server name into the /etc/hosts file of the gateway.

Point all clients DNS entries to the router, and you're done.

-- 
Tauno Voipio
tauno voipio (at) iki fi

---

• Next message: Tauno Voipio: "Re: Hopeless Windows VPN client as gateway in a Linux Network?"
• Previous message: nntp chip: "Re: DWL-G122 and support for Linux"
• Maybe in reply to: James Blanford: "Re: How best to route internal clients to internal web server?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---

Relevant Pages Re: IPNAT / IPF / rdr issue ... (such as www for th web server, ftp, as well as client hostnames). ... All clients are behind the gateway. ... (freebsd-questions) Re: Linux is not free nor is it an overall improvement from Windows 2000. ... > systems with Linux. ... > client who happened to use IBM hardware. ... > has sullied our reputation somewhat with our clients. ... (alt.os.linux) [SLE] cant get vpn going ... The server is behind a netgear adsl modem/gateway/router DG825M. ... The clients sit behind either a DLINK 504 router/modem or a netgear ... I can establish the tunnel from all machines running SuSE Linux ... (SuSE) Re: PPPoE ruined my servers, HELP! ... I don't do anything commercial with my machine, it is my "linux 101" class, I ... The web server is really ... running an MS web server on either machine, ping and traceroute both go right ... display the web site by domain name. ... (comp.os.linux.networking) Re: PPPoE ruined my servers, HELP! ... I don't do anything commercial with my machine, it is my "linux 101" class, I ... The web server is really ... running an MS web server on either machine, ping and traceroute both go right ... display the web site by domain name. ... (alt.os.linux)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(12)