[Server-devel] adding custom dns entries on XS
Jerry Vonau
jvonau at shaw.ca
Tue Mar 17 16:27:27 EDT 2009
On Tue, 2009-03-17 at 12:00 -0400, Daniel Drake wrote:
> 2009/3/17 Daniel Drake <dsd at laptop.org>:
> > But the iptables idea is a good one, thanks!
>
> ...but unfortunately the redirect is done by IP, which results in all
> services/sites that might be running on the same system as
> activation.laptop.org being unaccessible, and also breaks as soon as
> the upstream IP for activation.laptop.org changes :(
>
The dns hijack would suffer from an ip change also, would it not? With
iptables you would be redirecting just the destination ports for the
activation service, not all the traffic bound for activation.laptop.org,
as with the dns trick.
What iptables command did you try? I was thinking of something
like(untested):
-A PREROUTING -i ! eth0 -p tcp --dport <port> -d 18.85.46.58 -j DNAT
--to-destination <ip of your box>
Jerry
More information about the Server-devel
mailing list