From owner-freebsd-questions  Thu Jun 13 14:37:17 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from cody.jharris.com (cody.jharris.com [205.238.128.83])
	by hub.freebsd.org (Postfix) with ESMTP id 1716537B41B
	for <freebsd-questions@FreeBSD.ORG>; Thu, 13 Jun 2002 14:36:42 -0700 (PDT)
Received: from localhost (nick@localhost)
	by cody.jharris.com (8.11.1/8.9.3) with ESMTP id g5DLHkZ57763;
	Thu, 13 Jun 2002 16:17:46 -0500 (CDT)
	(envelope-from nick@rogness.net)
Date: Thu, 13 Jun 2002 16:17:46 -0500 (CDT)
From: Nick Rogness <nick@rogness.net>
X-Sender: nick@cody.jharris.com
To: Raja Velu <raja@micronetusa.com>
Cc: freebsd-questions@FreeBSD.ORG
Subject: RE: Port re-direction using NAT/IPFW
In-Reply-To: <000201c2131b$0e1cac00$1d00a8c0@www.micronetusa.com>
Message-ID: <Pine.BSF.4.21.0206131615180.56019-100000@cody.jharris.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Thu, 13 Jun 2002, Raja Velu wrote:

> 
> > > Hi All,
> > >
> > > We have a FreeBSD 4.4 setup running IPFW/NAT. We host web sites for
> > > several domains using Apache's virtual domain feature. We use Apache
> > > 1.3.20.
> > >
> > > One of our customers has web content that includes Microsoft's ASP
> > > pages, for which we need to host them on a Windows server. We have a
> > > Windows 2000 Server behind our firewall, which can probably do the
> > > hosting.
> > >
> > > My question is this: Can I re-direct requests for this
> > particular site
> > > alone to the Windows 2000 box sitting inside and continue to service
> > > requests for other web sites from the FreeBSD box? I know it's
> > > probably possible to do this if the site we're hosting on the Win2k
> > > server uses a port other than 80. Is that the only option though?
> > >
> >
> > 	Not unless it is on a different port (not 80) or has a different
> > 	public IP in which you can translate.  Although, there may be a
> > 	way through apache to handle something like
> > this...maybe with the
> > 	ReWrite Engine or some other facility.
> 

> I think I'll take your first suggestion. So, if I use a different
> public IP, I guess I'll have to run 2 instances of NAT. Can I do this
> using a virtual IP as my second public IP or do I have to put another
> network card in my box? I tried running a second instance of NAT on my
> virtual public IP and it came back with this error:

	You should be able to just buy another IP from your upstream
	provider and bind it as an alias using ifconfig (with the same
	network card).  

	You also don't need a second natd running.  Just setup the
	redirect statement and all should be well.


Nick Rogness <nick@rogness.net>
 - Don't mind me...I'm just sniffing your packets


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message