On Mon, Mar 24, 2003 at 01:27:54PM -0700, Brad Morgan wrote: > I assume you mean from the Internet. If that's the case, then the > answer is no. Your box1 and box2 are in a private address space which > by definition, isn't routed to the outside world. What your router > sees is packets with resolved IP addresses. There are no names in > the packets at this point. You only have one public IP address. What I thought, was if I set up box1.domain.com and box2.domain.com as A records of my external IP with my ISP, then get iptables to read 'box1.domain.com' from a string in the header it might work, but obviously not. Does the IP packet header only contain IP, or address as well? Although we (a friend and I) think that if we weren't using the ZyXEL, and had the linux box as the Internet connection, it might work? (as the router is re-writing all packet headers, so that packets get forwarded to the linux box) > You have two choices. One you've mentioned which is to use separate > ports for each machine which are then DNATed from the server to the > right box. The second is to use ssh twice, once from the outside to > the Debian server, and then from there to the box of your choice. Yeah, s'what I thought :) Thought it might be worth a try anyway, cos it'd make things much easier.. As I asked above, if the Debian box had a modem attached to it and was the box with the net connection, would it work? We're considering ditching the router and getting a modem for the box, cos we need to use PPTP/VPN as well (as per another post I just made to this list). > Brad Morgan James -- James O'Gorman email: james@xxxxxxxxxxxxxxxx | web: www.netinertia.co.uk The best you get is an even break. -- Franklin Adams
