Hi Yes and maybe no. If your domains are virtually hosted (they resolve to the same ip numbers) then no. iptables cannot redirect traffic in this case - it uses ip numbers. You would need to use something like Apache virtual hosting and possibly redirect pages to accomplish your goal in this case. If your domains resolve to different ip numbers, then iptables can be your solution: iptables -t nat -A PREROUTING -d www.dom1.com -p tcp --dport 80 -j REDIRECT --to-destination webserver-1:80 iptables -t nat -A PREROUTING -d www.dom2.com -p tcp --dport 80 -j REDIRECT --to-destination webserver-1:80 iptables -t nat -A PREROUTING -d www.dom3.com -p tcp --dport 80 -j REDIRECT --to-destination webserver-2:80 iptables -t nat -A PREROUTING -d www.dom4.com -p tcp --dport 80 -j REDIRECT --to-destination webserver-2:80 Remember, to use iptables like above, www.dom1.com, www.dom2.com, www.dom3.com, www.dom4.com must resolve to different ip numbers. Ray On Thu, 2002-12-12 at 10:58, E-GIM Security wrote: > Hi, > > Can Iptables route by domains? For example, I have a webserver and my > firewall with iptables route all request on port 80 throw IP webserver. I > need add another webserver, and various domains (www.dom1.com, www.dom2.com) > will be redirect to webserver-1 and other domains (www.dom3.com, > www.dom4.com) will be redirect to webserver-2. Can IPTables help me? Which > is the solution) > > Thanks and sorry ... my english is very poor. > > José Antonio García García > Technical Internet Solutions > > E-GIM +34 952700010 > http://www.e-gim.es > -- ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ( Raymond Leach ) ) Knowledge Factory ( ( ) ) Tel: +27 11 445 8100 ( ( Fax: +27 11 445 8101 ) ) ( ( http://www.knowledgefactory.co.za/ ) ) http://www.saptg.co.za/ ( ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ o o o o .--. .--. | o_o| |o_o | | \_:| |:_/ | / / \\ // \ \ ( | |) (| | ) /`\_ _/'\ /'\_ _/`\ \___)=(___/ \___)=(___/
Attachment:
signature.asc
Description: This is a digitally signed message part
