ip aliasing considered harmful?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I've currently got two Internet-facing IP addresses on my gateway using a single interface. I have them configured as eth0:0 and eth0:1, but I've read several times on this list that doing it this way (I think it's called aliasing?) is not recommended. IIRC the recommended alternative was to use the ip command to handle it.

Why is that alternative preferable? The only thing I can see now is that I'd have to double the number of iptables rules in some cases to take care of eth0:0 and eth0:1 instead of just eth0. If i use ip, can I simply point all rules to eth0 instead of eth0 and eth0:1?

Lastly, are there any downsides at all for doing it with ip? For example, eventually I'll want to SNAT and DNAT packets based on whether they're related to one Internet-facing IP or another, and I just want to make sure that would still be possible. Thanks!

--curby



[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux