From: klavs klavsen (kl_at_vsen.dk)
Date: Thu Mar 21 2002 - 03:10:10 EST

Hi guys,

I have a question to you clever coding techies out there :-)

quote from Changelog 0.14
This new kernel enhances set_ipv4root a bit. This is not the multi-ip
support yet though. This kernel allows application relying on broadcast
to work in vservers. The trick is to assigned both an IP number and a
broadcast address to a vserver. The socket handling for UDP was modified
a little (one line in net/ipv4/udp.c) so an incoming packet is processed
if it matched the vserver IP or the vserver broadcast address.

How much would have to be added to add a recognition of a certain port
on the "root" servers ip-address - so I f.ex. could run my proftpd under
a vserver (with a 10.x.x.x IP) and then assign port 21 on the root
server(which would be the only one with a RFC1918 -valid IP) to this
vserver (so that packages were forwarded)?

I guess we also need affiliated connections - but wouldn't an iptables
that kept state handle that?

Would this be a good way of doing it, at all?

Klavs Klavsen

-------------| This mail has been sent to you by: |------------ Klavs Klavsen - Open Source Consultant kl_at_vsen.dk - http://www.vsen.dk

Get PGP key from www.keyserver.net - Key ID: 0x586D5BCA Fingerprint = A95E B57B 3CE0 9131 9D15 94DA E1CD 641E 586D 5BCA --------------------[ I believe that... ]----------------------- It is a myth that people resist change. People resist what other people make them do, not what they themselves choose to do... That's why companies that innovate successfully year after year seek their peopl's ideas, let them initiate new projects and encourage more experiments. -- Rosabeth Moss Kanter

