iptables question

[ESGLinux]

Hi,

I was begining to test it and I now I think it´s impossible because when a
packet arrives to the firewall it send it to 2 diferent ips with diferent
servers. ok, but what about the answer of this packets?, the origin is only
one, It can´t handle two acks to the same packet,

In the man page:

       --to-destination ipaddr-ipaddr
              Address range to round-robin over.

you can set a range but it´s for use round-robin, not to send to several
destinations at one time,

am I wrong?

thanks,

ESG



2010/1/26 <postmaster at ronno.nl>

> Hello ESG,
>
> It is possible to give your iptables rule multiple '--to-destination'
> options.
>
> It depends on the kernel-version you use.
> There is a difference between kernels up to 2.6.10 and later
> kernel-versions,
> so it is important to test this first.
>
> good luck
>
>
> Regards
> Ron
>
>
>
>
> -----Oorspronkelijk bericht-----
> Van: redhat-list-bounces at redhat.com namens ESGLinux
> Verzonden: ma 25-1-2010 11:38
> Aan: General Red Hat Linux discussion list
> Onderwerp: iptables question
>
> Good morning,
>
> I have a question about a specific usage of iptables. I need to forward the
> incoming web trafic to 2 machines. I know how to forward to one, I use
> this:
> iptables -t nat -A PREROUTING -i eth1 -p tcp -m tcp --dport 80 -j DNAT
> --to-destination 192.168.1.93:80
>
> What I want to do is this:
>
> MACHINE1 : IP1
> MACHINE2 : IP2
>
> all the trafic that comes to IP1 to the web port must go to the self IP1
> and
> to the IP2 to the web port.
>
> Do you think this is possible ?
>
> thanks in advance,
>
> ESG
> --
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
>
>
> --
> redhat-list mailing list
> unsubscribe mailto:redhat-list-request at redhat.com?subject=unsubscribe
> https://www.redhat.com/mailman/listinfo/redhat-list
>