[ previous ] [ next ] [ threads ]
 
 From:  Phil <xphilz at gmail dot com>
 To:  "Chris Buechler" <cbuechler at gmail dot com>
 Cc:  m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] multiple port 80 rules in DMZ
 Date:  Fri, 23 Feb 2007 17:40:22 +1100
Hi Chris,

Thanks for the reply.

I do have multiple public IP's (I have a range of 8) and it won't let me do
the NAT to 2 different IP's with port 80.

Am I missing something obvious here?


On 2/23/07, Chris Buechler <cbuechler at gmail dot com> wrote:
>
> On 2/23/07, Phil <xphilz at gmail dot com> wrote:
> > Hi all,
> >
> > I have my DMZ with a public IP range (OPT1 int on m0n0).
> >
> > I have multiple dev machines in my DMZ and I have 2 machines that now
> need
> > port 80 opened to them.
> >
> > In the past, I had the 1st machine with a port 80 NAT rule and the port
> 80
> > fw rule which works like a charm.
> >
> > When trying to add a 2nd machine, you cant have multiple port 80 NAT's
> it
> > appears, kinda seems logical, I just dont know how to get around it.
> >
>
> You need multiple public IP's to open port 80 to multiple machines.
> You can only open a single port to a single IP (with any firewall).
>
> I've done this before in situations where I needed multiple web
> servers on a single public IP, but it's a real hack, you really need
> more than one public IP.
> http://doc.m0n0.ch/handbook/thirdparty-apache-virtualhosts.html
>
> -Chris
>