1292371448 J * misc-- ~misc@202-154-80-42.people.net.au 1292371476 M * misc-- hi everyone. I just have a question regarding networking 1292371537 M * misc-- I have vserver running on a server that has a public IP and a private IP. I have a few guests on it, they can all get internet access fine and I have port forwards going to some guest and external access to these guests aer fine 1292371650 M * misc-- on the vserver, I have a port 80 forward to a guest, and on another guest I need it to be able to connect to port 80 on the public IP which should redirect to the other guest. Externally, port 80 forward is fine, but internally, other guests can't connect to port 80 @ public IP 1292371715 M * daniel_hozac iptables -t nat -A OUTPUT is your friend. 1292371728 M * misc-- so I'm just wondering what rule I need. I read http://linux-vserver.org/Networking_vserver_guests and I have done what the 'host as router' section did 1292371730 M * misc-- ahhh 1292371741 M * misc-- actually yes that makes sense now 1292371744 M * misc-- because it doesn't use forward 1292371956 M * misc-- ok that's fixed now 1292371987 Q * neofutur Remote host closed the connection 1292371989 J * neofutur ~neofutur@xena.ww7.be 1292371993 M * misc-- it's a bit weird because I put this in: 1292372000 M * misc-- iptables -t nat -A OUTPUT -s \! 10.0.0.0/8 -m tcp -p tcp --dport 80 -j DNAT --to-destination 10.21.205.69 1292372013 M * misc-- which didn't work, so I removed the -s part so it now looked like this: 1292372023 M * misc-- iptables -t nat -A OUTPUT -m tcp -p tcp --dport 80 -j DNAT --to-destination 10.21.205.69 1292372057 M * misc-- and that fixed it. It is weird because when I run tcpdump on local interface and then connect to port 80 from guest, the source address is the public IP 1292372064 M * misc-- so that first rule should have matched 1292372112 M * misc-- I don't quite understand that. But thanks for your help =) 1292372191 M * daniel_hozac you quite likely want -d there... 1292372208 M * daniel_hozac otherwise all outbound HTTP connections will be redirected. 1292372268 M * misc-- all outbound connections should match the PREROUTING table though shouldn't it? But yeah I will put that in anyway 1292372378 M * misc-- I just tested - you are right, I do need the -d 1292372574 M * misc-- ah wait I understand it now 1292372962 Q * dowdle Remote host closed the connection 1292377627 Q * wurtel Ping timeout: 480 seconds 1292378266 Q * misc-- Quit: Leaving 1292384345 J * wurtel ~paul@gw-office.telegraaf.net 1292385071 Q * wurtel Ping timeout: 480 seconds 1292387278 M * Bertl off to bed now ... have a good one everyone! 1292387290 N * Bertl Bertl_zZ 1292388398 Q * niki Ping timeout: 480 seconds 1292388621 Q * nkukard_ Quit: Leaving 1292388663 Q * hparker Quit: Quit 1292388939 J * niki ~niki@94.145.207.11 1292391254 J * nkukard ~nkukard@196-208-217-109.dynamic-8632.isgsm.net 1292391799 J * wurtel ~paul@gw-office.telegraaf.net 1292392931 J * ghislain ~AQUEOS@adsl2.aqueos.com 1292398581 Q * derjohn_foo Ping timeout: 480 seconds 1292398780 Q * fback Ping timeout: 480 seconds 1292398837 J * petzsch ~markus@dfn357.rz.tu-ilmenau.de 1292399936 J * bsingh ~balbir@180.215.3.2 1292400364 J * serkanca ~serkanca@yazilim-vpn.sahibinden.com 1292400389 J * fback ~fback@red.fback.net 1292400738 Q * wurtel Ping timeout: 480 seconds 1292400982 Q * bsingh Ping timeout: 480 seconds 1292401512 J * derjohn_foo ~aj@213.238.45.2 1292401532 J * bsingh ~balbir@122.181.23.114 1292402513 Q * bsingh Ping timeout: 480 seconds 1292403982 Q * nkukard Quit: Leaving 1292405099 Q * mikez Quit: leaving 1292405154 Q * petzsch Quit: Leaving. 1292405499 J * bonbons ~bonbons@2001:a18:1:1402:2c0:9fff:fe2d:39d 1292406830 J * BenG ~bengreen@cpc2-aztw22-2-0-cust83.aztw.cable.virginmedia.com 1292407276 Q * cuba33ci Quit: leaving 1292407290 J * cuba33ci ~cuba33ci@111-240-205-247.dynamic.hinet.net 1292407466 J * wurtel ~paul@gw-office.telegraaf.net 1292408527 Q * Piet Remote host closed the connection 1292409195 J * nkukard ~nkukard@41-133-198-46.dsl.mweb.co.za 1292409511 J * Piet ~Piet__@28IAABG0C.tor-irc.dnsbl.oftc.net 1292410076 J * kir ~kir@swsoft-msk-nat.sw.ru 1292411921 Q * fback Ping timeout: 480 seconds 1292411921 Q * ktwilight Read error: Connection reset by peer 1292412132 J * ktwilight ~keliew@91.176.120.130 1292412481 J * fback fback@2a02:2780:9000:50::2 1292413271 Q * fback Ping timeout: 480 seconds 1292413290 P * kir Leaving. 1292413539 J * fback ~fback@red.fback.net 1292414395 Q * fback Ping timeout: 480 seconds 1292414548 Q * jeroen_ Quit: Ex-Chat 1292416376 N * Bertl_zZ Bertl 1292416380 M * Bertl morning folks! 1292416538 J * petzsch ~markus@dslb-088-075-125-025.pools.arcor-ip.net 1292416843 J * jeroen_ ~jeroen@imap.powerinternet.eu 1292417355 J * fback ~fback@red.fback.net 1292417630 Q * DLange Quit: kernel upgrade 1292417777 J * DLange ~DLange@dlange.user.oftc.net 1292417873 M * hijacker afternoon 1292424102 Q * BenG Quit: I Leave 1292426668 Q * manana Ping timeout: 480 seconds 1292427938 J * hparker ~hparker@2001:470:1f0f:32c:215:f2ff:fee0:9872 1292427940 J * dowdle ~dowdle@scott.coe.montana.edu 1292428120 M * ghislain ^^ 1292429183 J * manana ~mayday090@84.17.25.149 1292431053 J * DarkUranium ~DarkUrani@93-103-181-50.dynamic.t-2.net 1292431455 Q * derjohn_foo Ping timeout: 480 seconds 1292432476 J * yarihm ~yarihm@gprs09.swisscom-mobile.ch 1292432478 J * dna ~dna@dslb-088-074-193-211.pools.arcor-ip.net 1292432540 Q * serkanca Ping timeout: 480 seconds 1292432918 J * bsingh ~balbir@122.172.35.200 1292432922 J * imcsk8 ~ichavero@nat.ti.uach.mx 1292436031 Q * yarihm Quit: Leaving 1292437330 J * balbir_ ~balbir@122.172.35.200 1292437350 Q * balbir_ 1292439109 P * biz 1292439857 Q * ncopa Quit: Ex-Chat 1292442727 J * hijacker_ ~hijacker@87-126-142-51.btc-net.bg 1292444355 Q * petzsch Quit: Leaving. 1292444423 J * petzsch ~markus@dslb-088-075-125-025.pools.arcor-ip.net 1292444779 J * petzsch1 ~markus@dslb-088-075-125-025.pools.arcor-ip.net 1292444969 Q * petzsch1 1292444994 Q * cuba33ci Read error: Connection reset by peer 1292445086 Q * petzsch Ping timeout: 480 seconds 1292445088 J * cuba33ci ~cuba33ci@111-240-210-81.dynamic.hinet.net 1292446603 J * petzsch ~markus@dslb-088-075-125-025.pools.arcor-ip.net 1292448074 Q * hijacker_ Quit: Leaving 1292450220 Q * dna Quit: Verlassend 1292450566 M * Bertl daniel_hozac: if you have a moment, please check http://vserver.13thfloor.at/ExperimentalT/delta-cred-feat03.diff 1292450622 M * Bertl it implements a per index store for the credentials (seemed to fit the existing interface more) 1292450659 M * Bertl and moves the index related 'space' data into a separate struct 1292450790 J * thierryp ~thierry@ALyon-153-1-42-129.w86-194.abo.wanadoo.fr 1292450796 Q * petzsch Quit: Leaving. 1292451092 Q * nkukard Quit: Leaving 1292453001 J * derjohn_foo ~aj@d141235.adsl.hansenet.de 1292453105 Q * bsingh Ping timeout: 480 seconds 1292453396 J * nkukard ~nkukard@196-208-220-226.dynamic-8632.isgsm.net 1292454004 Q * ghislain Quit: Leaving. 1292455622 Q * thierryp Remote host closed the connection