On Mon, 2007-10-29 at 09:08 +0000, Leigh Peterson wrote: > Hi All, > > I have a question regarding iptables traffic forwarding. I have a machine with 2 NICs (which are on different subnets) and all inbound traffic is coming in on eth0. > > I currently have some rules that accepts traffic on a port range and then forwards that traffic to another host (like this one): > -A FORWARD -d 192.168.18.3 -i eth0 -p tcp -m tcp --dport 6660:6669 -j ACCEPT > as well as some rules that accept traffic for services on this host (like this): > -A RH-Firewall-1-INPUT -p tcp -m state --state NEW -m tcp --dport 1900 -j ACCEPT > > My first question is, how can I force the traffic from these two types on rules to respond via eth1? I believe, though I have never done such a thing, you need to tweak your routing tables. Check /sbin/route. > > I also have ProxyPass rules in Apache the traffic of which I would also like to forward to eth1. What interfaces (addresses) is Apache listening to? This last statement confuses me... [...] -- Matt Zagrabelny - mzagrabe@xxxxxxxxx - (218) 726 8844 University of Minnesota Duluth Information Technology Systems & Services PGP key 1024D/84E22DA2 2005-11-07 Fingerprint: 78F9 18B3 EF58 56F5 FC85 C5CA 53E7 887F 84E2 2DA2 He is not a fool who gives up what he cannot keep to gain what he cannot lose. -Jim Elliot
Attachment:
signature.asc
Description: This is a digitally signed message part
