I'd like to be able to access an host that is located 'inside' a firewall
from outside the firewall. The host has a private IP-number (and is accessed
by many IP-'clients' inside the private net, so changing the number to a
registered number is definitely not preferred).
My preferred solution is to install an 'IP number-translator' on the firewall,
that translates a virtual, registered IP-address to the real, unregistered
IP-address. It's in fact 'Reversed' Proxy.
Are there Firewall/Proxy programs to accomplish this? The Firewall runs on
a Linux-box, but any source would be appreciated; we are capable of porting
it to Linux.
Any comments and (preferrably ;-)) solutions are appreciated.
+------------+
+----------+ | | +--------+
| | Internet | Firewall + | Private Net | |
| Client A |----------| Virtual |-------------| Host B |
| | | Host B' | | |
+----------+ | | +--------+
+------------+
Station IP-From IP-To Description
A A B' Sends packet from A to B
F A B Receives packet and changes to-address
B A B Receives packet
B B A Sends reply
F B' A Receives packet and changes from-address
A B' A Receives packet
A, F and B' are valid (registered) IP-addresses, B is a private IP-address.
IP-From and IP-To are the adresses that should be in the from- and to-fields
of the IP-header.
CU, Eddie.
Follow-Ups:
|
|
