Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 6 years ago.
Improve this question
I have an OpenVPN server running on my Linux box and it's working fine. The server has a lot of IP addresses but it only uses one for all the clients (of course).
Is it possible to use multiple IP addresses (public) on the same server?
If you post this question on ServerFault, this post will get more eyeballs.
OpenVPN can listen on multiple IP addresses. The directive local sets the IP address(s) it listens on. Here is an excerpt from OpenVPN man page.
--local host
Local host name or IP address for bind. If specified, OpenVPN will bind to this address only. If unspecified, OpenVPN will bind to all interfaces.
Watch out if you have multiple public IP addresses on multiple interfaces. You may have to resort to some sort of port forwarding. Probably you should make OpenVPN listen on a single interface, preferably local interface and port forward traffic coming from various public IP's to this Interface.
Related
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 11 months ago.
Improve this question
I have a web server set up at home for hosting a web site and I bought a domain from NameCheap. Now I want to connect the two together. I watched a lot of tutorials and I can see that the most popular way of registering your server is with a DNS 'A record' by connecting to my IP address. The problem is that my IP address is changing every once in a while and I am not sure if this means that I have to make my IP static. Is that possible and how do I do that? Also, is this a good way of connecting my domain to my server or is there a better way?
It's possible, there are 2 options:
Call your ISP, and ask if they offer a static IP as an option for your service (depending on where you live, this could be expensive, and not available for home connections). Then point the DNS A to your new fix IP.
Use a service like "No-IP": In this scenario you have to associate a CNAME (instead of a A Record) to a subdomain from No-IP, and they will redirect to your home dynamic IP.
Now take into account, for those 2 cases, you'll need to forward that domain to your local computer using the function of DDNS of your router, plus another settings like port forwarding.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 2 years ago.
Improve this question
For example.
Lets say we have the following linux server:
host-server: 54.215.128.59
This servers will only accept connections from the following ip : 159.65.32.123
If a hacker only knows this information.
Could he be able to trick the host-server that the conection is coming from 159.65.32.123?
This way he would be jumping any firewall established.
It isn't very likely. Nothing is stopping you from defining you own IP address to whatever you want. In linux you can do it with (assuming you network interface is eth0):
sudo ifconfig eth0 159.65.32.123/24
If you are behind a NAT then you'll have to change its address and not yours. However, ISPs should have anti-spoofing measures in place that block packets with an IP address they didn't assign you.
There is also the problem of the return path. When the server will want to send something to this address, the packet will be routed according to the routing rules of all the nodes in the way, which are unlikely to point to the hacker's ISP.
If you are on a LAN with the server then it should be more possible, though you will likely need to handle the collision of IP addresses, and the problem of spoofing IP addresses on a different subnet. One option is to use ARP poisoning and do a MitM between the server and the router.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 4 years ago.
Improve this question
I'd like to configure a debian box with multiple ip addresses (in the same subnet) on the same physical NIC in debian, while every address should use it's own network route.
I think it won't be able using ip addr add, but is it possible using pseudo interfaces like eth0:0 ? Or does the linux TCP stack prevent this? And if it's possible, how do I bind multiple default routes to their (pseudo-)interface or ip address? will it be able using iptables roules and with which?
Aliases are not required to do this You can do this with iproute2
ip addr add <ip> dev eth0
you then add routing to a ip specific route table
ip route add subnet dev eth0 table <tableid>
ip route add default via <GATEWAY> table <tableid>
Then add a rule to match the ip so that it uses the specific table
ip rule add from any to <ip> lookup <tableid>
ip route add from <ip> to any lookup <tableid>
This can get pretty confusing because the routing is now multiple routing tables
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 8 years ago.
Improve this question
I would like to know how to make my Linux Server accesible for anyone around the world. I currectly can access it via 192.168.1.22 locally on my network. I would like it to be accesible through and IP or a domain name.
If you are wanting all ports to be accessible then you can make the box a DMZ on your router and set a static IP, then you are done. If you want it to be accessible through SSH which is what I am going to assume, then you need to set a static IP for the box forward the internal IP address and port in your router and then optionally set up DDNS settings if available. At that point you will be able to access the box from any public network. If you need help let me know.
Either get a static IP address from your Internet Service Provider, or use Dynamic DNS to map a domain name to a dynamic IP address.
One well known Dynamic DNS provider is NoIP
http://www.noip.com/free/
In any case, you probably have a NAT "firewall" that blocks all incoming traffic, so you'll need to configure the firewall to allow ports through that you want to server. Typical Linksys / Netgear NAT firewalls / Wifi routers allow you to port forward to a single private IP address.
Finally, you should make sure your ISP allows running a server. Though most of them dont mind, because the upload speed is throttled by design, you still want to check the terms of service.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 8 years ago.
Improve this question
I have set up a master DNS server using isc-bind. My problem is that when I try to look up hostnames from the same computer, it works when using localhost but not when I use the IP of the host.
This gives the correct answers:-
dig #localhost www.google.com
But this says "connection timed out; no servers could be reached"
dig #192.168.0.1 www.google.com
Here's my resolv.conf
nameserver 127.0.0.1
And when I run ping to 192.168.0.1, I get replies. What am I doing wrong here ??
Your instance of BIND is probably only listening on the loopback interface (127.0.0.1) and won't answer when addressed by an IP address that's associated with a real physical interface (your 192.168.0.1)
Look in your named.conf file for the listen-on directive. You may also need to change the allow-query ACL.