[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]

Re: [LUG] Transparent proxying using iptables

To: list@xxxxxxxxxxxxx
Subject: Re: [LUG] Transparent proxying using iptables
From: Alex Charrett <alex@xxxxxxxxxxxx>
Date: Fri, 6 Oct 2006 16:32:21 +0100 (BST)

On Fri, 6 Oct 2006, Simon Williams wrote:

> As an aside, why doesn't the DNAT target support DNS lookups?

Firewalls don't tend to allow you to put hostnames instead of IPs in their 
configuration as if you had a hostname and somone was to crack/poisin your 
DNS then they'd implicitly change you firewall rules.  How scary would 
that be?

Alex.

-- 
The Mailing List for the Devon & Cornwall LUG
http://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/linux_adm/list-faq.html

References:
- [LUG] Transparent proxying using iptables
  - From: Simon Williams

Prev by Date: [LUG] Transparent proxying using iptables
Next by Date: Re: [LUG] User friendly server side mail filter system
Previous by thread: [LUG] Transparent proxying using iptables
Next by thread: Re: [LUG] Transparent proxying using iptables
Index(es):
- Date
- Thread