From: Erik Smit (smite_at_zylon.net)
Date: Fri 23 May 2003 - 23:43:48 BST
On Thu, May 22, 2003 at 03:37:04PM -0700, Roderick A. Anderson wrote:
> Back in late February Fredrik Steen posted a message asking about aliases
> on the loopback device. Not sure if he ever got an answer but it did
> raise an interesting thought.
> One of the big features - to my way of thinking - of vservers is the
> isolation of services. To make them available without using stunnel or
> some other encrypted connections I though I could create a non-routable
> (192.168.x.x) network on the loopback device. Is this doable or are there
> potholes on this road?
I'm running my services on a non-routable IP (10.0.0.0/8 in my case) and
use DNAT on the external interface to make them reachable from the
outside. This works fine (for me).