Split DNS for Home Automation Project

Home Page Forums Network Management Networking Split DNS for Home Automation Project

This topic contains 2 replies, has 0 voices, and was last updated by  jakkednet 8 years, 7 months ago.

Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • #42629

    jakkednet
    Member

    I have a home automation system on my iPhone that I would like to access via my local network and internet.

    I have the automation system working now locally but my question is can I use zeroShell with split dns so when I’m local zeroShell will serve the local IP of the home automation system and when I’m connecting via net I can using a public IP and forward the traffic to the system. I haven’t tired using the public IP locally to see if that works as I’m pretty certain it won’t…

    BTW I have zeroShell up and running on an old P4 and am using it now. It was a total snap to install and get running! I have a split DNS system running at work using windows AD. I don’t really undersand the DNS interfaces…

    Any help or suggestions greatly appreciated.

    #51047

    ppalias
    Member

    Could you give us an example of what you mean? I am not familiar with split DNS.

    #51048

    jakkednet
    Member

    Here is a good article on split DNS from ISA Server.org
    http://www.isaserver.org/tutorials/You_Need_to_Create_a_Split_DNS.html

    Bacially the issues is when I’m on the local network I want to resolve my home automation systems IP with the local IP and when accessing via the WAN port I want to resolve the public.

    So in the iPhone app server field I put in: alarmsystem.jakked.net

    When I’m behind the ZS I need alarmsystem.jakked.net to resolve as 10.10.11.xxx

    When on the net the DNS should resolve alarmsystem.jakked.net as xxx.xxx.xxx.xxx

    #51049

    ppalias
    Member

    Ok I see what you want. What you must do is apply a prerouting rule to do a DNAT on packets incoming the LAN interface with a destination of the publick IP address. Try the following one:

    iptables -t nat -I PREROUTING -p tcp -d 222.222.222.111 --dport 80 -i ETH00 -j DNAT --to-destination 192.168.1.1:80

    222.222.222.111 is your public IP address
    192.168.1.1 is the internal IP address of the server
    ETH00 is the LAN interface. In this example I am forwarding the http (tcp/80) port.

Viewing 4 posts - 1 through 4 (of 4 total)

You must be logged in to reply to this topic.