Hi, Am Montag 10 April 2006 16:29 schrieb Piotr Szczap: > Hello, > Is it possible to 'clone' a packet using iptables? > I would like to do something like > -A INPUT -p tcp --dport 1111 -j DNAT --to-destination host_a > --to-destination host_b > but without the round-robin load balancing, so that the packet coming to > port 1111 is sent to host_a AND host_b. > > Or perhaps it can be done with BSD's packet filter? I bet Linux' netfilter can't do this. Think about your tcp connection's partner: it will receive ACK flags from two processes on the destination machine. Your tcp connection won't survive for long. Kind regards, -- Mit freundlichen Grüßen i.A. Martin Klier Systemadministration / Datenbanken ----------------------------------------------------------------- A.T.U Auto-Teile-Unger Handels GmbH & Co. KG Dr.-Kilian-Straße 4 D-92637 Weiden i. d. OPf.
Attachment:
pgp3POt9hXADK.pgp
Description: PGP signature
