Re: iptables: hide the real web server from users

To:	"Tim Perton" <grpanosgr@yahoo.com>
Subject:	Re: iptables: hide the real web server from users
From:	"Rodrigo Montoro (Sp0oKeR)" <spooker@gmail.com>
Date:	Wed, 14 Feb 2007 11:08:22 -0200
Cc:	netfilter@lists.netfilter.org
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	netfilter-list1@securepoint.com
Domainkey-signature:	a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=r6nxchaNg/oZp+v+ANcDnH2065Y/KukxjR1u0R0Ft6Z8wToFbXkfhlZGLLMBpNyo9dKf5dcMFJ1DfLfRzy4Vlep7YasuU7sQgGcM0mfLErYtpBO0jbgn8gA55h4D3JNugV+O1JvljeQ2reEXjhNqu5btf0oOn433hIYBfR5Ielk=
In-reply-to:	<354862.54159.qm@web33304.mail.mud.yahoo.com>
List-archive:	</pipermail/netfilter>
List-help:	<mailto:netfilter-request@lists.netfilter.org?subject=help>
List-id:	General discussion and user questions <netfilter.lists.netfilter.org>
List-post:	<mailto:netfilter@lists.netfilter.org>
List-subscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-unsubscribe:	<https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
References:	<354862.54159.qm@web33304.mail.mud.yahoo.com>
Sender:	netfilter-bounces@lists.netfilter.org

  I don' t think iptables is your best option for that.
  Try mod_security, mod_rewrite or apache proxy .

Regards,

On 2/14/07, Tim Perton <grpanosgr@yahoo.com> wrote:

Dear friends,
I have a web server running on system B. I run my main
services to System B but I do not want my users to
talk to system B directly.
So I have another server (System A) in a differrent
ISP & a completely different C class IP address like
below:

-----------------------------
--- System A (IP=a.b.c.d) ---
-----------------------------

-----------------------------
--- System B (IP=e.f.g.h) ---
-----------------------------

System A runs iptables(redhat EL4).

I want my users to do a request like
http://a.b.c.d/1.php and then machine A to make the
same request to System B, get the results and send
them back to the user transparently.
Practically System A to act as an intermediatery to
the real machine (System B).

Any idea on how to do this?

Regards,
Tim Perton



____________________________________________________________________________________
Food fight? Enjoy some healthy debate
in the Yahoo! Answers Food & Drink Q&A.
http://answers.yahoo.com/dir/?link=list&sid=396545367



--
=====================
Rodrigo Ribeiro Montoro
Desenvolvedor BRMAlinux
 spooker@brc.com.br
      RHCE/LPIC-I
=====================

<Prev in Thread]	Current Thread	[Next in Thread>
iptables: hide the real web server from users, Tim Perton Re: iptables: hide the real web server from users, Rodrigo Montoro (Sp0oKeR) <= RE: iptables: hide the real web server from users, Rob Sterenborg RE: iptables: hide the real web server from users, Robert LeBlanc RE: iptables: hide the real web server from users, Tim Perton Re: iptables: hide the real web server from users, Martijn Lievaart Re: iptables: hide the real web server from users, Grant Taylor Re: iptables: hide the real web server from users, Tim Perton Re: iptables: hide the real web server from users, Grant Taylor Re: iptables: hide the real web server from users, Tim Perton Re: iptables: hide the real web server from users, Pascal Hambourg Re: iptables: hide the real web server from users, Pascal Hambourg

Previous by Date:	iptables: hide the real web server from users, Tim Perton
Next by Date:	RE: iptables: hide the real web server from users, Rob Sterenborg
Previous by Thread:	iptables: hide the real web server from users, Tim Perton
Next by Thread:	RE: iptables: hide the real web server from users, Rob Sterenborg
Indexes:	[Date] [Thread] [Top] [All Lists]