From Luis Moreira
Subject Re: Hosts behind router - dyndns
Date Wed, 07 Aug 2002 09:28:31 GMT

    Just a thought : Wouldn't it be simpler just to have a proxy running between the router
and the servers ?
    In that way, the "disadvantage" Boyle mentions would cease to exist.

    The ingrateful forgets one-thousand meals, but complains about one that's missing (Chinese


----- Original Message ----- 
From: "Boyle Owen"
To: <>
Sent: Wednesday, August 07, 2002 9:42 AM
Subject: RE: Hosts behind router - dyndns

>From: Adam Lewis []
>I have several machines with private IP addresses.  I have 1 
>IP address on a
>cable internet connection.  I have setup a few domain names 
>with dynamic dns
>(  I have a router that does NAT for all 
>the machines so
>that they can get out to the internet.  I have port 80 forwarded to
> right now so if you point your browser to 
>you will see what's on  If you pointer your browser to
> you will see what's on  I 
>want to have
> goto and goto

I think Enric's solution is the simplest way to get things going. Since you have only one
public IP address, the router has no way to distinguish traffic for the two internal servers
(the packets are identical at the TCP/IP layer - it is only when you look into the HTTP attributes
to check the "Host" header that you see a difference. A network router can't do this).

So the solution (as per Enric) is to send all traffic to one server (e.g. and
run it as a server for one site (e.g. and a proxy to the other (e.g. To expand a little on the details:

- You need to install mod_proxy on the server euclid
- On that server you need to set up two name-based VHs:


# This is the local server
  DocumentRoot ...etc.

# This is the proxy
  ProxyPass /
  ProxyPassReverse /

Now the euclid server will detect requests for euclid and serve them from the first VH. Requests
for dtp will be routed to the second VH and proxied to the dtp server.

A slight disadvantage of this approach is that all traffic has to go through euclid. This
might be a problem if both sites are busy. A workaround would be to make the busiest site
the main server and proxy to the quieter site..


Owen Boyle

