www.zeroshell.org Forum Index www.zeroshell.org
Linux Distribution for server and embedded devices
 
 SearchSearch  RegisterRegister  UsergroupsUsergroups 
 ProfileProfile  Log inLog in  Log in to check your private messagesPrivate Message 

Split DNS for Home Automation Project

 
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> Networking
View previous topic :: View next topic  
Author Message
jakkednet



Joined: 04 Sep 2010
Posts: 2

PostPosted: Sat Sep 04, 2010 8:12 pm    Post subject: Split DNS for Home Automation Project Reply with quote

I have a home automation system on my iPhone that I would like to access via my local network and internet.

I have the automation system working now locally but my question is can I use zeroShell with split dns so when I'm local zeroShell will serve the local IP of the home automation system and when I'm connecting via net I can using a public IP and forward the traffic to the system. I haven't tired using the public IP locally to see if that works as I'm pretty certain it won't...

BTW I have zeroShell up and running on an old P4 and am using it now. It was a total snap to install and get running! I have a split DNS system running at work using windows AD. I don't really undersand the DNS interfaces...

Any help or suggestions greatly appreciated.
Back to top
View user's profile Send private message
ppalias



Joined: 17 Dec 2008
Posts: 1151
Location: Athens, Greece

PostPosted: Mon Sep 06, 2010 12:42 pm    Post subject: Reply with quote

Could you give us an example of what you mean? I am not familiar with split DNS.
Back to top
View user's profile Send private message Yahoo Messenger MSN Messenger
jakkednet



Joined: 04 Sep 2010
Posts: 2

PostPosted: Tue Sep 07, 2010 8:23 pm    Post subject: Reply with quote

Here is a good article on split DNS from ISA Server.org
http://www.isaserver.org/tutorials/You_Need_to_Create_a_Split_DNS.html

Bacially the issues is when I'm on the local network I want to resolve my home automation systems IP with the local IP and when accessing via the WAN port I want to resolve the public.

So in the iPhone app server field I put in: alarmsystem.jakked.net

When I'm behind the ZS I need alarmsystem.jakked.net to resolve as 10.10.11.xxx

When on the net the DNS should resolve alarmsystem.jakked.net as xxx.xxx.xxx.xxx
Back to top
View user's profile Send private message
ppalias



Joined: 17 Dec 2008
Posts: 1151
Location: Athens, Greece

PostPosted: Wed Sep 08, 2010 7:13 am    Post subject: Reply with quote

Ok I see what you want. What you must do is apply a prerouting rule to do a DNAT on packets incoming the LAN interface with a destination of the publick IP address. Try the following one:
Code:
iptables -t nat -I PREROUTING -p tcp -d 222.222.222.111 --dport 80 -i ETH00 -j DNAT --to-destination 192.168.1.1:80

222.222.222.111 is your public IP address
192.168.1.1 is the internal IP address of the server
ETH00 is the LAN interface. In this example I am forwarding the http (tcp/80) port.
Back to top
View user's profile Send private message Yahoo Messenger MSN Messenger
Display posts from previous:   
Post new topic   Reply to topic    www.zeroshell.org Forum Index -> Networking All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2005 phpBB Group