Date: Mon, 22 Apr 2002 11:02:22 -0500 (CDT) From: Nick Rogness <nick@rogness.net> To: "Jack L. Stone" <jack@sage-one.net> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Public IP Address Redirect to 2nd Server Message-ID: <Pine.BSF.4.21.0204221058520.64156-100000@cody.jharris.com> In-Reply-To: <3.0.5.32.20020421151900.011ff4d0@mail.sage-one.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 21 Apr 2002, Jack L. Stone wrote: > I'm running FBSD 4.5-release.... > > I have just installed a new high-speed connection with a block of IPs > assigned to that machine. Everything works fine on the main server, > which is also the gateway running NAT and has a number of virtual > hosts and they work fine too running Apache13_fp. Frontpage works fine > on that server where a large amount of content is managed making FP a > must. > > The PROBLEM is that I need SSL too that serves up the online order > pages for the other sites on the main server, but after weeks of tries > (and cries) I just can't get frontpage to run with Apache+ssl (from > ports) and I'm just not smart enough technically to make it work (and > I live down here at the end of the road in So. Texas with very little > tch help around). Install Apache+mod_ssl, then add mod_frontpage from the ports. > > The workaround I thought would be to install Apache-1.24+mod_ssl-2.8.8 > on a second server and forward URL requests for order pages to it. > Perhaps if I knew how to just add the mod_ssl, I would have it solved > using a single server, but no can do. > > I have the Apache+ssl running okay on server #2, I have assigned an > alias to the second IP to redirect to server's internal IP > #192.168.0.7 but nothing is forwarded to it so far. Below is my setup > to forward from the second public IP. The first line in RC.CONF is the > primary IP and the second IP is the alias to second server. > > One thing I guessed at was the "netmask" and I read a number of > different opinions and the docs are confusing. As seen below, I set > the netmask to the same as the primary IP routed from the ISP. I've > tried 255.255.255.255, but the output doesn't look right, so I used > the setting below leaving the netmask for both IPs the same. You need the netmask on the alias to be 255.255.255.255 if the alias IP and the main IP are on the same subnet. > > REQUEST FOR HELP > Would appreciate y'all taking a look at the info below and see if it looks > like I did it right. > > RC.CONF > ifconfig_rl1="inet XX.XX.XXX.137 netmask 255.255.255.248" > ifconfig_rl1_alias0="inet XX.XX.XXX.138 netmask 255.255.255.248" ^ Should have a netmask of 255.255.255.255 > natd_flags="-redirect_address 192.168.0.7 XX.XX.XXX.138" > > NETSTAT OUTPUT SHOWS BOTH IPS AS PER ALIAS ABOVE > netstat -a > rl1: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500 > inet XX.XX.XXX.137 netmask 0xfffffff8 broadcast XX.XX.XXX.143 > inet XX.XX.XXX.138 netmask 0xfffffff8 broadcast XX.XX.XXX.143 > > OUTPUT SHOWS NATD BOUND OKAY PER NATD REDIRECT TO THE SECOND SERVER > ps -auxw | grep natd > /sbin/natd -redirect_address 192.168.0.7 XX.XX.XXX.138 -n rl1 > Nick Rogness <nick@rogness.net> - Don't mind me...I'm just sniffing your packets To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0204221058520.64156-100000>