- This topic is empty.
-
Posts
-
I have a home automation system on my iPhone that I would like to access via my local network and internet.
I have the automation system working now locally but my question is can I use zeroShell with split dns so when I’m local zeroShell will serve the local IP of the home automation system and when I’m connecting via net I can using a public IP and forward the traffic to the system. I haven’t tired using the public IP locally to see if that works as I’m pretty certain it won’t…
BTW I have zeroShell up and running on an old P4 and am using it now. It was a total snap to install and get running! I have a split DNS system running at work using windows AD. I don’t really undersand the DNS interfaces…
Any help or suggestions greatly appreciated.
Here is a good article on split DNS from ISA Server.org
http://www.isaserver.org/tutorials/You_Need_to_Create_a_Split_DNS.htmlBacially the issues is when I’m on the local network I want to resolve my home automation systems IP with the local IP and when accessing via the WAN port I want to resolve the public.
So in the iPhone app server field I put in: alarmsystem.jakked.net
When I’m behind the ZS I need alarmsystem.jakked.net to resolve as 10.10.11.xxx
When on the net the DNS should resolve alarmsystem.jakked.net as xxx.xxx.xxx.xxx
Ok I see what you want. What you must do is apply a prerouting rule to do a DNAT on packets incoming the LAN interface with a destination of the publick IP address. Try the following one:
iptables -t nat -I PREROUTING -p tcp -d 222.222.222.111 --dport 80 -i ETH00 -j DNAT --to-destination 192.168.1.1:80222.222.222.111 is your public IP address
192.168.1.1 is the internal IP address of the server
ETH00 is the LAN interface. In this example I am forwarding the http (tcp/80) port.
- You must be logged in to reply to this topic.