First of all sorry if my question would be not relevant, I'm quite beginner. In short:
I have 2 physical machines -> first(Windows Server 2007, Apache 2.2) on the second machine esxi installed to host virtual machines . I have been converted my physical machine(1) on esxi(2) and in the next step I would like to deploy a load balancer between the physical and virtual machine.
I'm having trouble with getting local subnet traffic sent through a proxy. I've got some mobile testing devices on a subnet 192.168.0.0 and a web server on that also. For dev purposes, I need to inject some code. I'm using a proxy to do this. However the traffic that is local to the subnet (i.e. from a device, say 192.168.0.2 to the webserver 192.168.0.3) is not passing through the proxy server.
In a virtualized environment, a host uses iptables DNAT to direct traffic to the virtual machines based on the destination port. Each virtual machine is part of multiple subnets, which appear as separate interfaces in the VM.
My problem: From the host system, I am able to access eg. a webserver running on the VM through all the configured subnets.
I wrote the following iptables rules.
My main intention was to do these things
allow ssh traffic to any machine
allow web traffic(http,https, and some ssh) to a select number of websites(effectively a whitelist)
allow all traffic to 192.168.0.x (machines in my subnet)
allow all traffic with the loopback interface
don't mess up the current connections